Changes with Apache 1.3.37
*) SECURITY: CVE-2006-3747 (cve.mitre.org)
mod_rewrite: Fix an off-by-one security problem in the ldap scheme
handling. For some RewriteRules this could lead to a pointer being
written out of bounds. Reported by Mark Dowd of McAfee.
[Mark Cox]
* We're now also distributing a version of LessTif packaged with
[1]autopackage. Fixes to the autopackage/default.apspec.in were
applied for this, and the autopackage team augmented their
implementation for us (thanks!).
* Change the API of the _LtDebugPrintRenderTable function, the old
one wasn't working well.
* Add a dependency so ResConvert.c is compiled whenever configure.in
changes.
* Make the message from configure about missing or too old X
development packages mention the missing case too. Happens more
often than old versions nowadays.
* Add code to the release script to create an autopackage file.
* Add code to the release script to create RPMs automatically.
* Fix and clean up some of the XmStringCreate functions, they
weren't handling tabs and newlines correctly.
* Implement XmStringGenerate() and XmStringParseText() somewhat
better.
* Fix an initialisation problem with RenderTables which caused
colour settings to fail in some circumstances.
* Fix a bug that caused XmTextField to overwrite its border.
* Remove a couple of fprintf statements saying "Yow"
* Fix freetype installation check which appears to require include.
* Fix the build so it won't override defaults from libtool.
* Fix compile error in TextOut.c when compiling with Xft.
* RPM specfile syntax has renamed Copyright into License.
* Patch by Eric Branlund for _MOTIF_DRAG_TARGETS on x86_64.
* Patches by Winfried to fix warnings detected with GCC 4.
some of the infrastructure files. This also allows checking the
Makefiles in htdocs.
Added GAMEOWN, GAMEGRP and GAMEDIRMODE to the list of user-defined
variables that don't need to be mentioned in BUILD_DEFS.
When looking for absolute pathnames in "other" files, don't require them
to have a second component. This produces warnings for /var and /tmp,
which had been hidden before.
When strings that are likely to be absolute pathnames appear in the form
$(VARIABLE)/bin or "+ '/bin'", don't print a warning. The latter is used
when "+" is a string concatenation operator.
The direct use of tools is only suggested in targets named
{pre,do,post}-*, since other ones may be invoked without the tool
directory being in the PATH.
