[Bug 220160] www/apache24: Update to 2.4.26 (addresses multiple CVE reports)
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Tue Jun 20 18:08:21 UTC 2017
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=220160
--- Comment #3 from Dani <i.dani at outlook.com> ---
(In reply to Markus Kohlmeyer from comment #2)
Looks like the support for OpenSSL 1.1.0, which has been added in v2.4.26,
breaks the build with LibreSSL (which isn't officially supported by Apache
afaik).
See:
https://github.com/apache/httpd/commit/d9a5d4c6ee64b400cd552dbd8b3bbd36942d5544
and
https://www.openssl.org/docs/man1.1.0/ssl/SSL_CTX_set_max_proto_version.html
--
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
More information about the freebsd-apache
mailing list