Up to [cvs.NetBSD.org] / pkgsrc / www / apache24
Request diff between arbitrary revisions
Default branch: MAIN
Current tag: pkgsrc-2013Q2
Revision 1.9.2.1 / (download) - annotate - [select for diffs], Tue Jul 30 20:17:50 2013 UTC (10 years, 8 months ago) by tron
Branch: pkgsrc-2013Q2
Changes since 1.9: +4 -9
lines
Diff to previous 1.9 (unified) next main 1.10 (unified)
Pullup ticket #4193 - requested by ryoon www/apache24: security update Revisions pulled up: - www/apache24/Makefile 1.21 via patch - www/apache24/PLIST 1.11 - www/apache24/distinfo 1.10 - www/apache24/patches/patch-support_htdbm.c deleted - www/apache24/patches/patch-support_htdigest.c deleted - www/apache24/patches/patch-support_htpasswd.c deleted - www/apache24/patches/patch-support_passwd__common.c deleted - www/apache24/patches/patch-support_passwd__common.h deleted --- Module Name: pkgsrc Committed By: ryoon Date: Tue Jul 30 12:51:29 UTC 2013 Modified Files: pkgsrc/www/apache24: Makefile PLIST distinfo Removed Files: pkgsrc/www/apache24/patches: patch-support_htdbm.c patch-support_htdigest.c patch-support_htpasswd.c patch-support_passwd__common.c patch-support_passwd__common.h Log Message: Update to 2.4.6 Changelog: Security buxfixes. SECURITY: CVE-2013-1896 (cve.mitre.org) Sending a MERGE request against a URI handled by mod_dav_svn with the source href (sent as part of the request body as XML) pointing to a URI that is not configured for DAV will trigger a segfault. SECURITY: CVE-2013-2249 (cve.mitre.org) mod_session_dbd: Make sure that dirty flag is respected when saving sessions, and ensure the session ID is changed each time the session changes. This changes the format of the updatesession SQL statement. Existing configurations must be changed. And feature enhancement and bugfixes.
Revision 1.9 / (download) - annotate - [select for diffs], Thu Jun 20 09:06:45 2013 UTC (10 years, 10 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base
Branch point for: pkgsrc-2013Q2
Changes since 1.8: +6 -1
lines
Diff to previous 1.8 (unified)
Add fixes a problem of htpasswd creating wrong password entry when specifying password from tty or standard input. Reported as a bug: https://issues.apache.org/bugzilla/show_bug.cgi?id=54735. Use patch from http://people.apache.org/~rjung/patches/2.4-htpass.patch. Bump PKGREVISION.