kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/apache
History
bouyer 98d93c2013 Update to 1.3.34. This is a security fix release, fix pkg/31868 by 
Zafer Aydogan. Changes from 1.3.33:
  *) hsregex: fix potential core dumping on 64 bit machines, such as
     AMD64. PR 31858. [Glenn Strauss < gs-apache-dev gluelogic.com>]

  *) SECURITY: core: If a request contains both Transfer-Encoding and
     Content-Length headers, remove the Content-Length, mitigating some
     HTTP Request Splitting/Spoofing attacks.  This has no impact on
     mod_proxy_http, yet affects any module which supports chunked
     encoding yet fails to prefer T-E: chunked over the Content-Length
     purported value.  [Paul Querna, Joe Orton]

  *) Added TraceEnable [on|off|extended] per-server directive to alter
     the behavior of the TRACE method.  This addresses a flaw in proxy
     conformance to RFC 2616 - previously the proxy server would accept
     a TRACE request body although the RFC prohibited it.  The default
     remains 'TraceEnable on'.
     [William Rowe]

  *) mod_digest: Fix another nonce string calculation issue.
     [Eric Covener]
2005-10-19 20:30:20 +00:00
..
files Remove custom "restart" code from startup script so that Apache really 2005-04-18 14:40:17 +00:00
patches Add DragonFly support. 2005-08-22 16:19:00 +00:00
buildlink3.mk Get rid of USE_PERL5. The new way to express needing the Perl executable 2005-07-16 01:19:06 +00:00
DESCR
distinfo Update to 1.3.34. This is a security fix release, fix pkg/31868 by 2005-10-19 20:30:20 +00:00
Makefile Update to 1.3.34. This is a security fix release, fix pkg/31868 by 2005-10-19 20:30:20 +00:00
module.mk Don't check for USE_BUILDLINK3 anymore in these files. These are included 2005-03-24 22:42:58 +00:00
PLIST RCD_SCRIPTS_EXAMPLEDIR is no longer customizable. 2005-05-02 20:33:57 +00:00
PLIST.shared
PLIST.suexec