cvs commit: ports/www/apache22 Makefile ports/www/apache22/files apache.sh patch-secfix-CAN-2005-3357

Clement Laforet clement at FreeBSD.org
Sat Jan 14 08:03:43 PST 2006


clement     2006-01-14 16:03:43 UTC

  FreeBSD ports repository

  Modified files:
    www/apache22         Makefile 
    www/apache22/files   apache.sh 
  Added files:
    www/apache22/files   patch-secfix-CAN-2005-3357 
  Log:
  - SECURITY: CVE-2005-3357 (cve.mitre.org)
     mod_ssl: Fix a possible crash during access control checks if a
     non-SSL request is processed for an SSL vhost (such as the
     "HTTP request received on SSL port" error message when an 400
     ErrorDocument is configured, or if using "SSLEngine optional").
     [1]
  - reintroduce support of multiple instances of apache in startup
    script [2]
  - Add configtest command to apache22.sh [2]
  - rewrite detection of accf_http filter to make it works on all
    supported branches.
  - fix rcorder [3]
  - fix startup at boot time when profiles are used [4]
  
  Spotted by:     simon [1], flz[3]
  Submitted by:   Jarrod Sayers <jarrod at netleader.com.au> [2],
                  Joe Horn <joehorn at mi.chu.edu.tw> [4]
  PR:             ports/91154 [2], ports/90708 [4]
  
  Revision  Changes    Path
  1.186     +1 -1      ports/www/apache22/Makefile
  1.11      +81 -12    ports/www/apache22/files/apache.sh
  1.1       +21 -0     ports/www/apache22/files/patch-secfix-CAN-2005-3357 (new)


More information about the cvs-ports mailing list