The NetBSD Project

CVS log for pkgsrc/www/apache2/Attic/

[BACK] Up to [] / pkgsrc / www / apache2

Request diff between arbitrary revisions

Default branch: MAIN

Revision 1.36, Tue Jun 10 15:22:18 2014 UTC (8 years, 7 months ago) by joerg
Branch: MAIN
Changes since 1.35: +1 -1 lines

Retire Apache 1.3 and 2.0.

Revision 1.35 / (download) - annotate - [select for diffs], Wed Feb 12 23:18:43 2014 UTC (8 years, 11 months ago) by tron
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base, pkgsrc-2014Q1
Changes since 1.34: +2 -2 lines
Diff to previous 1.34 (colored)

Recursive PKGREVISION bump for OpenSSL API version bump.

Revision 1.34 / (download) - annotate - [select for diffs], Sun Dec 1 10:18:02 2013 UTC (9 years, 2 months ago) by ryoon
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base, pkgsrc-2013Q4
Changes since 1.33: +2 -2 lines
Diff to previous 1.33 (colored)

Revbump from devel/apr update

Revision 1.33 / (download) - annotate - [select for diffs], Wed Feb 20 12:14:42 2013 UTC (9 years, 11 months ago) by fhajny
Branch: MAIN
CVS Tags: pkgsrc-2013Q3-base, pkgsrc-2013Q3, pkgsrc-2013Q2-base, pkgsrc-2013Q2, pkgsrc-2013Q1-base, pkgsrc-2013Q1
Changes since 1.32: +8 -1 lines
Diff to previous 1.32 (colored)

Add apxs to buildlink3, so that packages that use apxs will build properly
under restricted pbulk.

Revision 1.32 / (download) - annotate - [select for diffs], Wed Feb 6 23:21:05 2013 UTC (9 years, 11 months ago) by jperkin
Branch: MAIN
Changes since 1.31: +2 -2 lines
Diff to previous 1.31 (colored)

PKGREVISION bumps for the security/openssl 1.0.1d update.

Revision 1.31 / (download) - annotate - [select for diffs], Sun Dec 16 01:52:37 2012 UTC (10 years, 1 month ago) by obache
Branch: MAIN
CVS Tags: pkgsrc-2012Q4-base, pkgsrc-2012Q4
Changes since 1.30: +2 -2 lines
Diff to previous 1.30 (colored)

recursive bump from cyrus-sasl libsasl2 shlib major bump.

Revision 1.30 / (download) - annotate - [select for diffs], Mon Nov 1 18:03:04 2010 UTC (12 years, 3 months ago) by adam
Branch: MAIN
CVS Tags: pkgsrc-2012Q3-base, pkgsrc-2012Q3, pkgsrc-2012Q2-base, pkgsrc-2012Q2, pkgsrc-2012Q1-base, pkgsrc-2012Q1, pkgsrc-2011Q4-base, pkgsrc-2011Q4, pkgsrc-2011Q3-base, pkgsrc-2011Q3, pkgsrc-2011Q2-base, pkgsrc-2011Q2, pkgsrc-2011Q1-base, pkgsrc-2011Q1, pkgsrc-2010Q4-base, pkgsrc-2010Q4
Changes since 1.29: +5 -5 lines
Diff to previous 1.29 (colored)

Changes 2.0.64:
* SECURITY: CVE-2010-1452 (
  mod_dav: Fix Handling of requests without a path segment.
* SECURITY: CVE-2009-1891 (
  Fix a potential Denial-of-Service attack against mod_deflate or other
  modules, by forcing the server to consume CPU time in compressing a
  large file after a client disconnects.
* SECURITY: CVE-2009-3095 (
  mod_proxy_ftp: sanity check authn credentials.
* SECURITY: CVE-2009-3094 (
  mod_proxy_ftp: NULL pointer dereference on error paths.
* SECURITY: CVE-2009-3555 (
  mod_ssl: Comprehensive fix of the TLS renegotiation prefix injection
  attack when compiled against OpenSSL version 0.9.8m or later. Introduces
  the 'SSLInsecureRenegotiation' directive to reopen this vulnerability
  and offer unsafe legacy renegotiation with clients which do not yet
  support the new secure renegotiation protocol, RFC 5746.
* SECURITY: CVE-2009-3555 (
  mod_ssl: A partial fix for the TLS renegotiation prefix injection attack
  for OpenSSL versions prior to 0.9.8l; reject any client-initiated
  renegotiations. Forcibly disable keepalive for the connection if there
  is any buffered data readable. Any configuration which requires
  renegotiation for per-directory/location access control is still
  vulnerable, unless using openssl 0.9.8l or later.
* SECURITY: CVE-2010-0434 (
  Ensure each subrequest has a shallow copy of headers_in so that the
  parent request headers are not corrupted.  Elimiates a problematic
  optimization in the case of no request body.
* SECURITY: CVE-2008-2364 (
  mod_proxy_http: Better handling of excessive interim responses
  from origin server to prevent potential denial of service and high
  memory usage.
* SECURITY: CVE-2010-0425 (
  mod_isapi: Do not unload an isapi .dll module until the request
  processing is completed, avoiding orphaned callback pointers.
* SECURITY: CVE-2008-2939 (
  mod_proxy_ftp: Prevent XSS attacks when using wildcards in the path of
  the FTP URL. Discovered by Marc Bevand of Rapid7.
* Fix recursive ErrorDocument handling.
* mod_ssl: Do not do overlapping memcpy.
* Add Set-Cookie and Set-Cookie2 to the list of headers allowed to pass
  through on a 304 response.
* apxs: Fix -A and -a options to ignore whitespace in httpd.conf

Revision 1.29 / (download) - annotate - [select for diffs], Sun Jan 17 12:02:48 2010 UTC (13 years ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2010Q3-base, pkgsrc-2010Q3, pkgsrc-2010Q2-base, pkgsrc-2010Q2, pkgsrc-2010Q1-base, pkgsrc-2010Q1
Changes since 1.28: +2 -2 lines
Diff to previous 1.28 (colored)

Recursive PKGREVISION bump for jpeg update to 8.

Revision 1.28 / (download) - annotate - [select for diffs], Fri Mar 20 19:25:35 2009 UTC (13 years, 10 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2009Q4-base, pkgsrc-2009Q4, pkgsrc-2009Q3-base, pkgsrc-2009Q3, pkgsrc-2009Q2-base, pkgsrc-2009Q2, pkgsrc-2009Q1-base, pkgsrc-2009Q1
Changes since 1.27: +6 -13 lines
Diff to previous 1.27 (colored)

Simply and speed up files and processing.
This changes the files to use an include guard for the
recursive include. The use of BUILDLINK_DEPTH, BUILDLINK_DEPENDS,
BUILDLINK_PACKAGES and BUILDLINK_ORDER is handled by a single new
variable BUILDLINK_TREE. Each file adds a pair of
enter/exit marker, which can be used to reconstruct the tree and
to determine first level includes. Avoiding := for large variables
(BUILDLINK_ORDER) speeds up parse time as += has linear complexity.
The include guard reduces system time by avoiding reading files over and
over again. For complex packages this reduces both %user and %sys time to
half of the former time.

Revision 1.27 / (download) - annotate - [select for diffs], Sat Sep 6 20:54:34 2008 UTC (14 years, 4 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2008Q4-base, pkgsrc-2008Q4, pkgsrc-2008Q3-base, pkgsrc-2008Q3, cube-native-xorg-base, cube-native-xorg
Changes since 1.26: +2 -2 lines
Diff to previous 1.26 (colored)

Recursive PKGREVISION/ABI-depends bump for db4 4.6->4.7 update (shlib
name change).

Revision 1.26 / (download) - annotate - [select for diffs], Fri Jan 18 05:09:48 2008 UTC (15 years ago) by tnn
Branch: MAIN
CVS Tags: pkgsrc-2008Q2-base, pkgsrc-2008Q2, pkgsrc-2008Q1-base, pkgsrc-2008Q1, cwrapper
Changes since 1.25: +2 -2 lines
Diff to previous 1.25 (colored)

Per the process outlined in revbump(1), perform a recursive revbump
on packages that are affected by the switch from the openssl 0.9.7
branch to the 0.9.8 branch. ok jlam@

Revision 1.25 / (download) - annotate - [select for diffs], Sat Jan 12 11:36:30 2008 UTC (15 years ago) by adam
Branch: MAIN
Changes since 1.24: +2 -2 lines
Diff to previous 1.24 (colored)

db4 update related revision bump

Revision 1.24 / (download) - annotate - [select for diffs], Sun Jun 10 07:32:48 2007 UTC (15 years, 7 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2007Q4-base, pkgsrc-2007Q4, pkgsrc-2007Q3-base, pkgsrc-2007Q3, pkgsrc-2007Q2-base, pkgsrc-2007Q2
Changes since 1.23: +2 -2 lines
Diff to previous 1.23 (colored)

Force upper bound for Apache2, as pkg_add would choose Apache 2.2
otherwise, which breaks buildlink.

Revision 1.23 / (download) - annotate - [select for diffs], Fri Jun 8 12:25:06 2007 UTC (15 years, 7 months ago) by wiz
Branch: MAIN
Changes since 1.22: +2 -2 lines
Diff to previous 1.22 (colored)

PKGREVISION bump for db4 shlib name change.

Revision 1.22 / (download) - annotate - [select for diffs], Wed Jan 24 19:46:45 2007 UTC (16 years ago) by epg
Branch: MAIN
CVS Tags: pkgsrc-2007Q1-base, pkgsrc-2007Q1
Changes since 1.21: +2 -2 lines
Diff to previous 1.21 (colored)

    Update to 1.2.8 (formerly in devel/apr1), no longer build from the
    httpd distfile.

    Use devel/apr0.

    Use devel/apr and devel/apr-util.

Revision 1.21 / (download) - annotate - [select for diffs], Mon Jul 10 08:29:33 2006 UTC (16 years, 6 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2006Q4-base, pkgsrc-2006Q4, pkgsrc-2006Q3-base, pkgsrc-2006Q3
Changes since 1.20: +1 -5 lines
Diff to previous 1.20 (colored)

Fixed some pkglint warnings.

Revision 1.20 / (download) - annotate - [select for diffs], Sat Jul 8 23:11:12 2006 UTC (16 years, 6 months ago) by jlam
Branch: MAIN
Changes since 1.19: +2 -2 lines
Diff to previous 1.19 (colored)

Change the format of BUILDLINK_ORDER to contain depth information as well,
and add a new helper target and script, "show-buildlink3", that outputs
a listing of the files included as well as the depth at
which they are included.

For example, "make show-buildlink3" in fonts/Xft2 displays:


Revision 1.19 / (download) - annotate - [select for diffs], Sat Jul 8 22:39:43 2006 UTC (16 years, 6 months ago) by jlam
Branch: MAIN
Changes since 1.18: +2 -1 lines
Diff to previous 1.18 (colored)

Track information in a new variable BUILDLINK_ORDER that informs us
of the order in which files are (recursively) included
by a package Makefile.

Revision 1.18 / (download) - annotate - [select for diffs], Wed Apr 12 10:27:38 2006 UTC (16 years, 9 months ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2006Q2-base, pkgsrc-2006Q2
Changes since 1.17: +2 -2 lines
Diff to previous 1.17 (colored)

Aligned the last line of the files with the first line, so
that they look nicer.

Revision 1.17 / (download) - annotate - [select for diffs], Thu Apr 6 06:22:53 2006 UTC (16 years, 10 months ago) by reed
Branch: MAIN
Changes since 1.16: +3 -3 lines
Diff to previous 1.16 (colored)

Over 1200 files touched but no revisions bumped :)

RECOMMENDED is removed. It becomes ABI_DEPENDS. becomes becomes

BUILDLINK_DEPENDS does not change.

IGNORE_RECOMMENDED (which defaulted to "no") becomes USE_ABI_DEPENDS
which defaults to "yes".

Added to checking for IGNORE_RECOMMENDED.

I did not manually go through and fix any aesthetic tab/spacing issues.

I have tested the above patch on DragonFly building and packaging
subversion and pkglint and their many dependencies.

I have also tested USE_ABI_DEPENDS=no on my NetBSD workstation (where I
have used IGNORE_RECOMMENDED for a long time). I have been an active user
of IGNORE_RECOMMENDED since it was available.

As suggested, I removed the documentation sentences suggesting bumping for
"security" issues.

As discussed on tech-pkg.

I will commit to revbump, pkglint, pkg_install, createbuildlink separately.

Note that if you use wip, it will fail!  I will commit to pkgsrc-wip
later (within day).

Revision 1.16 / (download) - annotate - [select for diffs], Sun Feb 5 23:11:19 2006 UTC (16 years, 11 months ago) by joerg
Branch: MAIN
CVS Tags: pkgsrc-2006Q1-base, pkgsrc-2006Q1
Changes since 1.15: +2 -2 lines
Diff to previous 1.15 (colored)

Recursive revision bump / recommended bump for gettext ABI change.

Revision 1.15 / (download) - annotate - [select for diffs], Tue Jan 24 07:32:46 2006 UTC (17 years ago) by wiz
Branch: MAIN
Changes since 1.14: +2 -2 lines
Diff to previous 1.14 (colored)

Bump BUILDLINK_RECOMMENDED of textproc/expat to 2.0.0 because
of the shlib major bump.
PKGREVISION++ for the dependencies.

Revision 1.14 / (download) - annotate - [select for diffs], Mon Dec 5 23:55:22 2005 UTC (17 years, 1 month ago) by rillig
Branch: MAIN
CVS Tags: pkgsrc-2005Q4-base, pkgsrc-2005Q4
Changes since 1.13: +2 -2 lines
Diff to previous 1.13 (colored)

Ran "pkglint --autofix", which corrected some of the quoting issues in

Revision 1.13 / (download) - annotate - [select for diffs], Mon Dec 5 20:51:11 2005 UTC (17 years, 1 month ago) by rillig
Branch: MAIN
Changes since 1.12: +3 -3 lines
Diff to previous 1.12 (colored)

Fixed pkglint warnings. The warnings are mostly quoting issues, for
example MAKE_ENV+=FOO=${BAR} is changed to MAKE_ENV+=FOO=${BAR:Q}. Some
other changes are outlined in

Revision 1.12 / (download) - annotate - [select for diffs], Sat Jul 16 01:19:25 2005 UTC (17 years, 6 months ago) by jlam
Branch: MAIN
CVS Tags: pkgsrc-2005Q3-base, pkgsrc-2005Q3
Changes since 1.11: +2 -2 lines
Diff to previous 1.11 (colored)

Get rid of USE_PERL5.  The new way to express needing the Perl executable
around at either build-time or at run-time is:

	USE_TOOLS+=	perl		# build-time
	USE_TOOLS+=	perl:run	# run-time

Also remove some places where perl5/ was being included
by a package Makefile, but all that the package wanted was the Perl

Revision 1.11 / (download) - annotate - [select for diffs], Sat Dec 18 08:42:12 2004 UTC (18 years, 1 month ago) by adrianp
Branch: MAIN
CVS Tags: pkgsrc-2005Q2-base, pkgsrc-2005Q2, pkgsrc-2005Q1-base, pkgsrc-2005Q1, pkgsrc-2004Q4-base, pkgsrc-2004Q4
Changes since 1.10: +2 -2 lines
Diff to previous 1.10 (colored)

- Bump to nb5 to specifically address a new apache vuln:
- Changes backported from apache CVS HEAD:

Revision 1.10 / (download) - annotate - [select for diffs], Tue Nov 30 23:21:44 2004 UTC (18 years, 2 months ago) by jlam
Branch: MAIN
Changes since 1.9: +4 -2 lines
Diff to previous 1.9 (colored)

Modify the apxs(8) script to use ${APR_LIBTOOL} as the libtool to
build modules if APR_LIBTOOL is defined in the environment.  Force
the use of the libtool wrapper by module packages by setting APR_LIBTOOL
in apache2/  Bump the PKGREVISION.

Revision 1.9 / (download) - annotate - [select for diffs], Tue Nov 23 20:17:55 2004 UTC (18 years, 2 months ago) by jlam
Branch: MAIN
Changes since 1.8: +3 -3 lines
Diff to previous 1.8 (colored) files should be included outside of the multiple inclusion
protected region (see mk/buildlink3/

Revision 1.8 / (download) - annotate - [select for diffs], Sun Oct 3 00:18:24 2004 UTC (18 years, 4 months ago) by tv
Branch: MAIN
Changes since 1.7: +2 -1 lines
Diff to previous 1.7 (colored)

Libtool fix for PR pkg/26633, and other issues.  Update libtool to 1.5.10
in the process.  (More information on tech-pkg.)

Bump PKGREVISION and BUILDLINK_DEPENDS of all packages using libtool and
installing .la files.

Bump PKGREVISION (only) of all packages depending directly on the above
via a buildlink3 include.

Revision 1.7 / (download) - annotate - [select for diffs], Mon Sep 20 17:19:33 2004 UTC (18 years, 4 months ago) by adrianp
Branch: MAIN
CVS Tags: pkgsrc-2004Q3-base, pkgsrc-2004Q3
Changes since 1.6: +2 -3 lines
Diff to previous 1.6 (colored)

- Update apache to 2.0.51
- Remove patch-as and patch-ah as they are now outdated and included in the src

- ok'ed snj@, wiz@
- Thanks to epg@ for final check

This version of Apache is principally a bug fix release. Of particular note
is that 2.0.51 addresses five security vulnerabilities:

An input validation issue in IPv6 literal address parsing which can result
in a negative length parameter being passed to memcpy.

A buffer overflow in configuration file parsing could allow a local user to
gain the privileges of a httpd child if the server can be forced to parse a
carefully crafted .htaccess file.

A segfault in mod_ssl which can be triggered by a malicious remote server,
if proxying to SSL servers has been configured.

A potential infinite loop in mod_ssl which could be triggered given
particular timing of a connection abort.

A segfault in mod_dav_fs which can be remotely triggered by an indirect lock
refresh request.

For further details, see

Revision 1.6 / (download) - annotate - [select for diffs], Tue Sep 7 19:43:03 2004 UTC (18 years, 4 months ago) by adrianp
Branch: MAIN
Changes since 1.5: +2 -1 lines
Diff to previous 1.5 (colored)

Security update for apache2 with the changes backported from the
Apache CVS tree.



Revision / (download) - annotate - [select for diffs], Wed Jul 14 12:39:00 2004 UTC (18 years, 6 months ago) by agc
Branch: pkgsrc-2004Q2
Changes since 1.4: +2 -3 lines
Diff to previous 1.4 (colored) next main 1.5 (colored)

Pullup ticket 57 to the pkgsrc-2004Q2 branch, requested by Grant Beattie.

Security and other bug fixes for apache2.

	Module Name:    pkgsrc
	Committed By:   adrianp
	Date:           Wed Jul 14 08:28:51 UTC 2004

	Modified Files:
		pkgsrc/www/apache2: Makefile Makefile.common PLIST
		pkgsrc/www/apache2/patches: patch-aa
	Added Files:
		pkgsrc/www/apache2: PLIST.deffiles
	Removed Files:
		pkgsrc/www/apache2/patches: patch-as

	Log Message:
	- Update to apache 2.0.50
	- Add new build def APACHE_DEFAULT_FILES


	Module Name:    pkgsrc
	Committed By:   adrianp
	Date:           Wed Jul 14 08:31:12 UTC 2004

	Modified Files:
		pkgsrc/devel/apr: distinfo

	Log Message:
	- Update to apache 2.0.50
	- Add new build def APACHE_DEFAULT_FILES

Revision 1.5 / (download) - annotate - [select for diffs], Wed Jul 14 08:28:51 2004 UTC (18 years, 6 months ago) by adrianp
Branch: MAIN
Changes since 1.4: +2 -3 lines
Diff to previous 1.4 (colored)

- Update to apache 2.0.50
- Add new build def APACHE_DEFAULT_FILES

Changes with Apache 2.0.50

  *) SECURITY: CAN-2004-0493 (
     Close a denial of service vulnerability identified by Georgi
     Guninski which could lead to memory exhaustion with certain
     input data.  [Jeff Trawick]

  *) mod_cgi: Handle output on stderr during script execution on Unix
     platforms; preventing deadlock when stderr output fills pipe buffer.
     Also fixes case where stderr from nph- scripts could be lost.
     PR 22030, 18348.  [Joe Orton, Jeff Trawick]

  *) mod_alias now emits a warning if it detects overlapping *Alias*
     directives.  [André Malo]

  *) mod_rewrite no longer turns forward proxy requests into reverse proxy
     requests. PR 28125  [ast, André Malo]

  *) ap_set_sub_req_protocol and ap_finalize_sub_req_protocol are now
     exported on Win32 and Netware as well (minor MMN bump).  PR 28523.
     [Edward Rudd <eddie>, André Malo]

  *) Restore the ability to disable the use of AcceptEx on Win9x systems
     automatically (broken in 2.0.49). PR 28529.  [André Malo]

  *) <VirtualHost myhost> now applies to all IP addresses for myhost
     instead of just the first one reported by the resolver.  This
     corrects a regression since 1.3.  [Jeff Trawick]

  *) util_ldap: allow relative paths for LDAPTrustedCA to be resolved
     against ServerRoot PR#26602 [Brad Nicholes]

  *) SECURITY: CAN-2004-0488 (
     mod_ssl: Fix a buffer overflow in the FakeBasicAuth code for a
     (trusted) client certificate subject DN which exceeds 6K in length.
     [Joe Orton]

  *) mod_dav_fs: Fix MKCOL response for missing parent collections, which
     caused issues for the Eclipse WebDAV extension.
     PR 29034.  [Joe Orton]

  *) mod_deflate: Fix memory consumption (which was proportional to the
     response size).  PR 29318.  [Joe Orton]

  *) mod_ssl: Log the errors returned on failure to load or initialize
     a crypto accelerator engine.  [Joe Orton]

  *) Allow RequestHeader directives to be conditional. PR 27951.
     [Vincent Deffontaines <vincent>, André Malo]

  *) Allow LimitRequestBody to be reset to unlimited. PR 29106
     [André Malo]

  *) Fix a bunch of cases where the return code of the regex compiler
     was not checked properly. This affects: mod_setenvif, mod_usertrack,
     mod_proxy, mod_proxy_ftp and core. PR 28218.  [André Malo]

  *) mod_ssl: Fix a potential segfault in the 'shmcb' session cache for
     small cache sizes.  PR 27751.  [Geoff Thorpe <geoff>]

  *) Remove 2Gb log file size restriction on some 32-bit platforms.
     PR 13511.  [Joe Orton]

  *) mod_logio no longer removes the EOS bucket. PR 27928.
     [Bojan Smojver <bojan>]

  *) htpasswd no longer refuses to process files that contain empty
     lines.  [André Malo]

  *) Regression from 1.3: At startup, suexec now will be checked for
     availability, the setuid bit and user root. The works only if
     httpd is compiled with the shipped APR version (0.9.5).
     PR 28287.  [André Malo]

  *) Unix MPMs: Stop dropping connections when the file descriptor
     is at least FD_SETSIZE.  [Jeff Trawick]

  *) Fix handling of IPv6 numeric strings in mod_proxy.  [Jeff Trawick]

  *) mod_isapi: send_response_header() failed to copy status string's
     last character.  PR 20619.  [Jesse Pelton <jsp>]

  *) Fix a segfault when requests for shared memory fails and returns
     NULL. Fix a segfault caused by a lack of bounds checking on the
     cache.  PR 24801.  [Graham Leggett]

  *) Throw an error message if an attempt is made to use the LDAPTrustedCA
     or LDAPTrustedCAType directives in a VirtualHost. PR 26390
     [Brad Nicholes]

  *) Fix a potential segfault if the bind password in the LDAP cache
     is NULL.  PR 28250.  [Jari Ahonen <jah>]

  *) Quotes cannot be used around require group and require dn
     directives, update the documentation to reflect this. Also add
     quotes around the dn and group within debug messages, to make it
     more obvious why authentication is failing if quotes are used in
     error.  PR 19304.  [Graham Leggett]

  *) The Microsoft LDAP SDK escapes filters for us, stop util_ldap
     from escaping filters twice when the backslash character is used.
     PR 24437.  [Jess Holle <jessh>]

  *) Overhaul handling of LDAP error conditions, so that the util_ldap_*
     functions leave the connections in a sane state after errors have
     occurred. PR 27748, 17274, 17599, 18661, 21787, 24595, 24683, 27134,
     27271 [Graham Leggett]

  *) mod_ldap calls ldap_simple_bind_s() to validate the user
     credentials.  If the bind fails, the connection is left
     in an unbound state.  Make sure that the ldap connection
     record is updated to show that the connection is no longer
     bound. [Brad Nicholes]

  *) Ensure that lines in the request which are too long are
     properly terminated before logging.
     [Tsurutani Naoki <turutani>]

  *) Update the bind credentials for the cached LDAP connection to
     reflect the last bind.  This prevents util_ldap from creating
     unnecessary connections rather than reusing cached connections.
     [Brad Nicholes]

  *) mod_isapi: GetServerVariable returned improperly terminated header
     fields given "ALL_HTTP" or "ALL_RAW".  PR 20656.
     [Jesse Pelton <jsp>]

  *) mod_isapi: GetServerVariable("ALL_RAW") returned the wrong buffer
     size.  PR 20617.  [Jesse Pelton <jsp>]

  *) mod_dav: Fix a problem that could cause crashes when manipulating
     locks on some platforms.  [Jeff Trawick]

  *) mod_headers no longer crashes if an empty header value should
     be added.  [André Malo]

  *) Fix segfault in mod_expires, which occured under certain
     circumstances. PR 28047.  [André Malo]

  *) htpasswd: use apr_temp_dir_get() and general cleanup
     [Guenter Knauf <eflash>, Thom May]

  *) mod_ssl: Fix memory leak in session cache handling.  PR 26562
     [Madhusudan Mathihalli]

  *) mod_ssl: Fix potential segfaults when performing SSL shutdown from
     a pool cleanup.  PR 27945.  [Joe Orton]

  *) Add forensic logging module (mod_log_forensic).
     [Ben Laurie]

  *) logresolve: Allow size of log line buffer to be overridden at
     build time (MAXLINE).  PR 27793.  [Jeff Trawick]

  *) Fix the comment delimiter in htdbm so that it correctly parses the
     username comment.  Also add a terminate function to allow NetWare
     to pause the output before the screen is destroyed.
     [Guenter Knauf <eflash>, Brad Nicholes]

  *) Fix crash when Apache was started with no Listen directives.
     [Michael Corcoran <mcorcoran>]

  *) core_output_filter: Fix bug that could result in sending
     garbage over the network when module handlers construct
     bucket brigades containing multiple file buckets all referencing
     the same open file descriptor. [Bojan Smojver]

  *) Fix memory corruption problem with ap_custom_response() function.
     The core per-dir config would later point to request pool data
     that would be reused for different purposes on different requests.
     [Jeff Trawick, based on an old 1.3 patch submitted by Will Lowe]

  *) Win32: Tweak worker thread accounting routines to eliminate
     server hang when number of Listen directives in httpd.conf
     is greater than or equal to the setting of ThreadsPerChild.
     [Bill Stoddard]

Revision 1.4 / (download) - annotate - [select for diffs], Fri Mar 26 02:27:56 2004 UTC (18 years, 10 months ago) by wiz
Branch: MAIN
CVS Tags: pkgsrc-2004Q2-base, pkgsrc-2004Q1-base, pkgsrc-2004Q1
Branch point for: pkgsrc-2004Q2
Changes since 1.3: +2 -1 lines
Diff to previous 1.3 (colored)

PKGREVISION bump after openssl-security-fix-update to 0.9.6m.
Buildlink files: RECOMMENDED version changed to current version.

Revision 1.3 / (download) - annotate - [select for diffs], Mon Mar 22 19:50:16 2004 UTC (18 years, 10 months ago) by reed
Branch: MAIN
Changes since 1.2: +2 -2 lines
Diff to previous 1.2 (colored)

Update apache2 to 2.0.49. This includes various changes since last release
  *) SECURITY: CAN-2004-0174 (
     Fix starvation issue on listening sockets where a short-lived
     connection on a rarely-accessed listening socket will cause a
     child to hold the accept mutex and block out new connections until
     another connection arrives on that rarely-accessed listening socket.
     With Apache 2.x there is no performance concern about enabling the
     logic for platforms which don't need it, so it is enabled everywhere
     except for Win32.  [Jeff Trawick]

  *) SECURITY: CAN-2004-0113 (
     mod_ssl: Fix a memory leak in plain-HTTP-on-SSL-port handling.
     PR 27106.  [Joe Orton]

  *) SECURITY: CAN-2003-0020 (
     Escape arbitrary data before writing into the errorlog. Unescaped
     errorlogs are still possible using the compile time switch
     "-DAP_UNSAFE_ERROR_LOG_UNESCAPED".  [Geoffrey Young, Andr<E9> Malo]

Complete changelog is at

Package changes include:

buildlink depends increased for apache2 (but not for apr).

apr package version changes, but APR_VERSION stays same.

more files installed and added to PLIST.
share/httpd/manual/search/manual-index.cgi removed from PLIST.
Also removing share/httpd/htdocs and share/httpd directories
removed from PLIST because already handled by MAKE_DIRS.
(I think this should use OWN_DIRS.)

(jlam@ said he would like this update done during freeze.)

Revision 1.2 / (download) - annotate - [select for diffs], Thu Mar 18 09:12:15 2004 UTC (18 years, 10 months ago) by jlam
Branch: MAIN
Changes since 1.1: +10 -10 lines
Diff to previous 1.1 (colored)

Fix serious bug where BUILDLINK_PACKAGES wasn't being ordered properly
by moving the inclusion of files outside of the protected
region.  This bug would be seen by users that have set PREFER_PKGSRC
or PREFER_NATIVE to non-default values.

BUILDLINK_PACKAGES should be ordered so that for any package in the
list, that package doesn't depend on any packages to the left of it
in the list.  This ordering property is used to check for builtin
packages in the correct order.  The problem was that including a file for <pkg> correctly ensured that <pkg> was removed
from BUILDLINK_PACKAGES and appended to the end.  However, since the
inclusion of any other files within that
was in a region that was protected against multiple inclusion, those
dependencies weren't also moved to the end of BUILDLINK_PACKAGES.

Revision 1.1 / (download) - annotate - [select for diffs], Mon Mar 8 00:15:53 2004 UTC (18 years, 10 months ago) by minskim
Branch: MAIN


This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.

CVSweb <>