![[BACK]](/icons/back.gif){kind=icon}
Up to [cvs.NetBSD.org] / pkgsrc / devel / apr0
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.13, Tue Jun 10 15:22:13 2014 UTC (9 years, 5 months ago) by joerg
Branch: MAIN
CVS Tags: HEAD
Changes since 1.12: +1 -1
lines
FILE REMOVED
Retire Apache 1.3 and 2.0.
Revision 1.12 / (download) - annotate - [select for diffs], Wed Feb 12 23:17:45 2014 UTC (9 years, 9 months ago) by tron
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base,
pkgsrc-2014Q1
Changes since 1.11: +2 -1
lines
Diff to previous 1.11 (colored)
Recursive PKGREVISION bump for OpenSSL API version bump.
Revision 1.11 / (download) - annotate - [select for diffs], Sun Aug 4 02:44:36 2013 UTC (10 years, 4 months ago) by obache
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base,
pkgsrc-2013Q4,
pkgsrc-2013Q3-base,
pkgsrc-2013Q3
Changes since 1.10: +1 -2
lines
Diff to previous 1.10 (colored)
Update apr to 0.9.20.
Changes with APR 0.9.20
*) Security: CVE-2011-0419
Reimplement apr_fnmatch() from scratch using a non-recursive
algorithm; now has improved compliance with the fnmatch() spec.
[William Rowe]
*) Updated config.guess and config.sub. [Rainer Jung]
*) Fix flag character '#' in combination with format character 'x' in
apr snprintf implementations. [Rainer Jung]
Revision 1.10 / (download) - annotate - [select for diffs], Wed Feb 6 23:21:05 2013 UTC (10 years, 10 months ago) by jperkin
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base,
pkgsrc-2013Q2,
pkgsrc-2013Q1-base,
pkgsrc-2013Q1
Changes since 1.9: +2 -2
lines
Diff to previous 1.9 (colored)
PKGREVISION bumps for the security/openssl 1.0.1d update.
Revision 1.9 / (download) - annotate - [select for diffs], Sun Dec 16 01:52:09 2012 UTC (10 years, 11 months ago) by obache
Branch: MAIN
CVS Tags: pkgsrc-2012Q4-base,
pkgsrc-2012Q4
Changes since 1.8: +2 -1
lines
Diff to previous 1.8 (colored)
recursive bump from cyrus-sasl libsasl2 shlib major bump.
Revision 1.8 / (download) - annotate - [select for diffs], Wed Oct 31 11:16:37 2012 UTC (11 years, 1 month ago) by asau
Branch: MAIN
Changes since 1.7: +1 -3
lines
Diff to previous 1.7 (colored)
Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.
Revision 1.7 / (download) - annotate - [select for diffs], Mon Nov 1 18:03:03 2010 UTC (13 years, 1 month ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2012Q3-base,
pkgsrc-2012Q3,
pkgsrc-2012Q2-base,
pkgsrc-2012Q2,
pkgsrc-2012Q1-base,
pkgsrc-2012Q1,
pkgsrc-2011Q4-base,
pkgsrc-2011Q4,
pkgsrc-2011Q3-base,
pkgsrc-2011Q3,
pkgsrc-2011Q2-base,
pkgsrc-2011Q2,
pkgsrc-2011Q1-base,
pkgsrc-2011Q1,
pkgsrc-2010Q4-base,
pkgsrc-2010Q4
Changes since 1.6: +3 -3
lines
Diff to previous 1.6 (colored)
Changes 2.0.64: * SECURITY: CVE-2010-1452 (cve.mitre.org) mod_dav: Fix Handling of requests without a path segment. * SECURITY: CVE-2009-1891 (cve.mitre.org) Fix a potential Denial-of-Service attack against mod_deflate or other modules, by forcing the server to consume CPU time in compressing a large file after a client disconnects. * SECURITY: CVE-2009-3095 (cve.mitre.org) mod_proxy_ftp: sanity check authn credentials. * SECURITY: CVE-2009-3094 (cve.mitre.org) mod_proxy_ftp: NULL pointer dereference on error paths. * SECURITY: CVE-2009-3555 (cve.mitre.org) mod_ssl: Comprehensive fix of the TLS renegotiation prefix injection attack when compiled against OpenSSL version 0.9.8m or later. Introduces the 'SSLInsecureRenegotiation' directive to reopen this vulnerability and offer unsafe legacy renegotiation with clients which do not yet support the new secure renegotiation protocol, RFC 5746. * SECURITY: CVE-2009-3555 (cve.mitre.org) mod_ssl: A partial fix for the TLS renegotiation prefix injection attack for OpenSSL versions prior to 0.9.8l; reject any client-initiated renegotiations. Forcibly disable keepalive for the connection if there is any buffered data readable. Any configuration which requires renegotiation for per-directory/location access control is still vulnerable, unless using openssl 0.9.8l or later. * SECURITY: CVE-2010-0434 (cve.mitre.org) Ensure each subrequest has a shallow copy of headers_in so that the parent request headers are not corrupted. Elimiates a problematic optimization in the case of no request body. * SECURITY: CVE-2008-2364 (cve.mitre.org) mod_proxy_http: Better handling of excessive interim responses from origin server to prevent potential denial of service and high memory usage. * SECURITY: CVE-2010-0425 (cve.mitre.org) mod_isapi: Do not unload an isapi .dll module until the request processing is completed, avoiding orphaned callback pointers. * SECURITY: CVE-2008-2939 (cve.mitre.org) mod_proxy_ftp: Prevent XSS attacks when using wildcards in the path of the FTP URL. Discovered by Marc Bevand of Rapid7. * Fix recursive ErrorDocument handling. * mod_ssl: Do not do overlapping memcpy. * Add Set-Cookie and Set-Cookie2 to the list of headers allowed to pass through on a 304 response. * apxs: Fix -A and -a options to ignore whitespace in httpd.conf
Revision 1.5.14.1 / (download) - annotate - [select for diffs], Fri Aug 14 10:18:19 2009 UTC (14 years, 3 months ago) by tron
Branch: pkgsrc-2009Q2
Changes since 1.5: +3 -2
lines
Diff to previous 1.5 (colored) next main 1.6 (colored)
Pullup ticket #2865 - requested by taca apr0: security patch Revisions pulled up: - devel/apr0/Makefile 1.6 - devel/apr0/distinfo 1.4 - devel/apr0/patches/patch-ab 1.1 - devel/apr0/patches/patch-ac 1.1 --- Module Name: pkgsrc Committed By: taca Date: Wed Aug 12 03:37:28 UTC 2009 Modified Files: pkgsrc/devel/apr0: Makefile distinfo Added Files: pkgsrc/devel/apr0/patches: patch-ab patch-ac Log Message: Fix security problem of CVE-2009-2412 adding patches described in it. Bump PKGREVISION.
Revision 1.6 / (download) - annotate - [select for diffs], Wed Aug 12 03:37:28 2009 UTC (14 years, 3 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2010Q3-base,
pkgsrc-2010Q3,
pkgsrc-2010Q2-base,
pkgsrc-2010Q2,
pkgsrc-2010Q1-base,
pkgsrc-2010Q1,
pkgsrc-2009Q4-base,
pkgsrc-2009Q4,
pkgsrc-2009Q3-base,
pkgsrc-2009Q3
Changes since 1.5: +3 -2
lines
Diff to previous 1.5 (colored)
Fix security problem of CVE-2009-2412 adding patches described in it. Bump PKGREVISION.
Revision 1.4.4.1 / (download) - annotate - [select for diffs], Wed Jun 25 12:09:43 2008 UTC (15 years, 5 months ago) by tron
Branch: pkgsrc-2008Q1
Changes since 1.4: +2 -1
lines
Diff to previous 1.4 (colored) next main 1.5 (colored)
Pullup ticket #2434 - requested by he
Security patch for apache2
Revisions pulled up:
- devel/apr0/Makefile 1.5
- www/apache2/Makefile 1.124
- www/apache2/Makefile.common 1.26
---
Module Name: pkgsrc
Committed By: he
Date: Sun Jun 22 23:01:19 UTC 2008
Modified Files:
pkgsrc/devel/apr0: Makefile
pkgsrc/www/apache2: Makefile Makefile.common
Log Message:
As indicated by comments on pkgsrc-c, move PKGREVISION setting to
individual Makefile files and out of Makefile.common.
Revision 1.5 / (download) - annotate - [select for diffs], Sun Jun 22 23:01:19 2008 UTC (15 years, 5 months ago) by he
Branch: MAIN
CVS Tags: pkgsrc-2009Q2-base,
pkgsrc-2009Q1-base,
pkgsrc-2009Q1,
pkgsrc-2008Q4-base,
pkgsrc-2008Q4,
pkgsrc-2008Q3-base,
pkgsrc-2008Q3,
pkgsrc-2008Q2-base,
pkgsrc-2008Q2,
cwrapper,
cube-native-xorg-base,
cube-native-xorg
Branch point for: pkgsrc-2009Q2
Changes since 1.4: +2 -1
lines
Diff to previous 1.4 (colored)
As indicated by comments on pkgsrc-c, move PKGREVISION setting to individual Makefile files and out of Makefile.common.
Revision 1.4 / (download) - annotate - [select for diffs], Sun Nov 18 16:22:06 2007 UTC (16 years ago) by adrianp
Branch: MAIN
CVS Tags: pkgsrc-2008Q1-base,
pkgsrc-2007Q4-base,
pkgsrc-2007Q4
Branch point for: pkgsrc-2008Q1
Changes since 1.3: +5 -1
lines
Diff to previous 1.3 (colored)
Fix build on Darwin 9.x
Revision 1.2.4.1 / (download) - annotate - [select for diffs], Sat Sep 8 09:54:45 2007 UTC (16 years, 3 months ago) by ghen
Branch: pkgsrc-2007Q2
Changes since 1.2: +1 -2
lines
Diff to previous 1.2 (colored) next main 1.3 (colored)
Pullup ticket 2184 - requested by tron
security update for apache2
- pkgsrc/devel/apr0/Makefile 1.3
- pkgsrc/devel/apr0/distinfo 1.2
- pkgsrc/www/apache2/Makefile 1.118
- pkgsrc/www/apache2/Makefile.commom 1.22
- pkgsrc/www/apache2/PLIST 1.35
- pkgsrc/www/apache2/distinfo 1.51
- pkgsrc/www/apache2/patches/patch-ap removed
- pkgsrc/www/apache2/patches/patch-aq removed
Module Name: pkgsrc
Committed By: tron
Date: Fri Sep 7 23:11:41 UTC 2007
Modified Files:
pkgsrc/devel/apr0: Makefile distinfo
pkgsrc/www/apache2: Makefile Makefile.common PLIST distinfo
Log Message:
Update "apr" package to version 0.9.16.2.0.61 and "apache2" package
to version 2.0.61.
This update is a bug and security fix release. The following security
problem hasn't been fixed in "pkgsrc" before:
- CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when
parsing date-related headers.
---
Module Name: pkgsrc
Committed By: tron
Date: Fri Sep 7 23:28:23 UTC 2007
Removed Files:
pkgsrc/www/apache2/patches: patch-ap patch-aq
Log Message:
Remove obsolete patch files.
Revision 1.3 / (download) - annotate - [select for diffs], Fri Sep 7 23:11:40 2007 UTC (16 years, 3 months ago) by tron
Branch: MAIN
CVS Tags: pkgsrc-2007Q3-base,
pkgsrc-2007Q3
Changes since 1.2: +1 -2
lines
Diff to previous 1.2 (colored)
Update "apr" package to version 0.9.16.2.0.61 and "apache2" package to version 2.0.61. This update is a bug and security fix release. The following security problem hasn't been fixed in "pkgsrc" before: - CVE-2007-3847: mod_proxy: Prevent reading past the end of a buffer when parsing date-related headers.
Revision 1.2 / (download) - annotate - [select for diffs], Sun Feb 11 16:05:51 2007 UTC (16 years, 9 months ago) by tv
Branch: MAIN
CVS Tags: pkgsrc-2007Q2-base,
pkgsrc-2007Q1-base,
pkgsrc-2007Q1
Branch point for: pkgsrc-2007Q2
Changes since 1.1: +2 -2
lines
Diff to previous 1.1 (colored)
When this moved to devel/apr0, PKGREVISION should have been bumped. The package records the package subdir in the +BUILD_INFO, which is used by several pkgtools to look up metainformation about the package, and that metainfo will be wrong until the package is rebuilt (now as nb3).
Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Wed Jan 24 19:31:24 2007 UTC (16 years, 10 months ago) by epg
Branch: TNF
CVS Tags: pkgsrc-base
Changes since 1.1: +0 -0
lines
Diff to previous 1.1 (colored)
Import renamed devel/apr (0.9.x) so that can upgrade to 1.2.x.
Revision 1.1 / (download) - annotate - [select for diffs], Wed Jan 24 19:31:24 2007 UTC (16 years, 10 months ago) by epg
Branch: MAIN
Initial revision