kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/apache/patches/patch-ac
abs 22c31d8d94 Update apache to 1.3.33 
The main security vulnerabilities addressed in 1.3.33 are:

    * CAN-2004-0940 (cve.mitre.org)
      Fix potential buffer overflow with escaped characters in SSI tag string.
    * CAN-2004-0492 (cve.mitre.org)
      Reject responses from a remote server if sent an invalid
      (negative) Content-Length.

New features

    * Win32: Improve error reporting after a failed attempt to
      spawn a piped log process or rewrite map process.
    * Added new compile-time flag: UCN_OFF_HONOR_PHYSICAL_PORT. It
      controls how UseCanonicalName Off determines the port value if
      the client doesn't provide one in the Host header. If defined
      during compilation, UseCanonicalName Off will use the physical
      port number to generate the canonical name. If not defined, it
      tries the current Port value followed by the default port for
      the current scheme.

The following bugs were found in Apache 1.3.31 (or earlier) and
have been fixed in Apache 1.3.33:

    * mod_rewrite: Fix query string handling for proxied URLs. PR 14518.
    * mod_rewrite: Fix 0 bytes write into random memory position. PR 31036.
    * mod_digest: Fix nonce string calculation since 1.3.31 which
      would force re-authentication for every connection if
      AuthDigestRealmSeed was not configured. PR 30920.
    * Fix trivial bug in mod_log_forensic that caused the child to
      seg fault when certain invalid requests were fired at it with
      forensic logging is enabled. PR 29313.
    * No longer breaks mod_dav, frontpage and others. Repair a
      patch in 1.3.31 which prevented discarding the request body
      for requests that will be keptalive but are not currently
      keptalive. PR 29237.
2004-10-29 13:48:31 +00:00

35 lines
1.3 KiB
Text
Raw Blame History

$NetBSD: patch-ac,v 1.8 2004/10/29 13:48:31 abs Exp $
--- htdocs/index.html.en.orig 2001-05-04 01:00:38.000000000 +0100
+++ htdocs/index.html.en
@@ -27,12 +27,26 @@ issues.</p>
<hr width="50%" size="8" />
<p>The Apache <a href="manual/">documentation</a> has been included
-with this distribution.</p>
+with this distribution. If the <strong>mod_ssl</strong> SSL extension has
+been installed, then please carefully read the
+<a href="manual/mod/mod_ssl/index.html">SSL documentation</a>.</p>
-<p>You are free to use the image below on an Apache-powered web
-server. Thanks for using Apache!</p>
+<p>Information on the NetBSD multi-platform operating system can be found at
+<a href="http://www.netbsd.org/">The NetBSD Project homepage</a></p>
-<div align="center"><img src="apache_pb.gif" alt="" /></div>
+<p>Please feel free to use the images below on an Apache/NetBSD-powered web
+server. Thanks for using
+<a href="http://www.apache.org/">Apache</a> on
+<a href="http://www.netbsd.org/">NetBSD</a>!</p>
+
+<div align="center">
+ <a href="http://www.apache.org/">
+ <img src="apache_pb.gif" border=0 alt="Powered by Apache">
+ </a>
+ <a href="http://www.netbsd.org/">
+ <img src="sitedrivenby.gif" border=0 alt="Site driven by NetBSD">
+ </a>
+</div>
</body>
</html>
Reference in a new issue View git blame Copy permalink