ports/160743: commit references a PR
dfilter at FreeBSD.ORG
Thu Sep 15 05:10:10 UTC 2011
The following reply was made to PR ports/160743; it has been noted by GNATS.
From: dfilter at FreeBSD.ORG (dfilter service)
To: bug-followup at FreeBSD.org
Subject: Re: ports/160743: commit references a PR
Date: Thu, 15 Sep 2011 05:00:38 +0000 (UTC)
ohauer 2011-09-15 05:00:28 UTC
FreeBSD ports repository
www/apache22 Makefile distinfo
- update to version 2.2.21
* SECURITY: CVE-2011-3348 (cve.mitre.org)
mod_proxy_ajp when combined with mod_proxy_balancer: Prevents
unrecognized HTTP methods from marking ajp: balancer members
in an error state, avoiding denial of service.
* SECURITY: CVE-2011-3192 (cve.mitre.org)
core: Further fixes to the handling of byte-range requests to use
less memory, to avoid denial of service. This patch includes fixes
to the patch introduced in release 2.2.20 for protocol compliance,
as well as the MaxRanges directive.
Submitted by: Jason Helfman <jhelfman at experts-exchange.com>
Revision Changes Path
1.293 +2 -2 ports/www/apache22/Makefile
1.86 +2 -2 ports/www/apache22/distinfo
cvs-all at freebsd.org mailing list
To unsubscribe, send any mail to "cvs-all-unsubscribe at freebsd.org"
More information about the freebsd-apache