kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/apache22
History
tron 14db98734a Update "apache22" package to version 2.2.9. 
This version of Apache is principally a bug and security fix release.
The following potential security flaws are addressed:
- CVE-2008-2364: mod_proxy_http: Better handling of excessive interim
  responses from origin server to prevent potential denial of service and
  high memory usage. Reported by Ryujiro Shibuya.
- CVE-2007-6420: mod_proxy_balancer: Prevent CSRF attacks against the
  balancer-manager interface.

pkgsrc related notes:
- CVE-2008-2364 was already fixed in "pkgsrc"
- CVE-2007-6420 doesn't affect the package in the default configuration
  because the "proxy_balancer" isn't enabled.
2008-06-18 21:38:00 +00:00
..
files
patches Update "apache22" package to version 2.2.9. 2008-06-18 21:38:00 +00:00
buildlink3.mk Per the process outlined in revbump(1), perform a recursive revbump 2008-01-18 05:06:18 +00:00
DESCR
distinfo Update "apache22" package to version 2.2.9. 2008-06-18 21:38:00 +00:00
Makefile Update "apache22" package to version 2.2.9. 2008-06-18 21:38:00 +00:00
Makefile.common Update "apache22" package to version 2.2.9. 2008-06-18 21:38:00 +00:00
options.mk Convert to use PLIST_VARS instead of manually passing "@comment " 2008-04-12 22:42:57 +00:00
PLIST Update "apache22" package to version 2.2.9. 2008-06-18 21:38:00 +00:00
PLIST.worker