kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/apache
History
wiz 1404131327 Update to 1.3.36: 
Changes with Apache 1.3.36

  *) Reverted SVN rev #396294 due to unwanted regression.
     The new feature introduced in 1.3.35 (Allow usage of the
     "Include" configuration directive within previously "Include"d
     files) has been removed in the meantime.
     (http://svn.apache.org/viewcvs?rev=396294&view=rev)

Changes with Apache 1.3.35

  *) SECURITY: CVE-2005-3352 (cve.mitre.org)
     mod_imap: Escape untrusted referer header before outputting in HTML
     to avoid potential cross-site scripting.  Change also made to
     ap_escape_html so we escape quotes.  Reported by JPCERT.
     [Mark Cox]

  *) core: Allow usage of the "Include" configuration directive within
     previously "Include"d files. [Colm MacCarthaigh]

  *) HTML-escape the Expect error message.  Not classed as security as
     an attacker has no way to influence the Expect header a victim will
     send to a target site.  Reported by Thiago Zaninotti [Mark Cox]

  *) mod_cgi: Remove block on OPTIONS method so that scripts can
     respond to OPTIONS directly rather than via server default.
     [Roy Fielding] PR 15242
2006-07-19 22:45:14 +00:00
..
files Remove custom "restart" code from startup script so that Apache really 2005-04-18 14:40:17 +00:00
patches Update to 1.3.36: 2006-07-19 22:45:14 +00:00
buildlink3.mk Change the format of BUILDLINK_ORDER to contain depth information as well, 2006-07-08 23:10:35 +00:00
DESCR
distinfo Update to 1.3.36: 2006-07-19 22:45:14 +00:00
Makefile Update to 1.3.36: 2006-07-19 22:45:14 +00:00
module.mk Fixed some easy pkglint warnings. 2006-07-02 10:43:18 +00:00
PLIST Add missing entry for a new file. Pointed out by Lubomir Sedlacik. 2005-10-19 21:42:59 +00:00
PLIST.shared
PLIST.suexec