[QAT] 348808: 2x leftovers, 4x success

Ports-QAT qat at redports.org
Sat Mar 22 21:30:11 UTC 2014

- update to 2.4.9
- enforcing use libapr-1.so.5 (apr-1.5.0 instead apr-1.4.8)

Changes with Apache 2.4.9

  *) mod_ssl: Work around a bug in some older versions of OpenSSL that
     would cause a crash in SSL_get_certificate for servers where the
     certificate hadn't been sent. [Stephen Henson]

   *) mod_lua: Add a fixups hook that checks if the original request is intended
      for LuaMapHandler. This fixes a bug where FallbackResource invalidates the
      LuaMapHandler directive in certain cases by changing the URI before the map
      handler code executes [Daniel Gruno, Daniel Ferradal <dferradal gmail com>].

Changes with Apache 2.4.8

  *) SECURITY: CVE-2014-0098 (cve.mitre.org)
     Clean up cookie logging with fewer redundant string parsing passes.
     Log only cookies with a value assignment. Prevents segfaults when
     logging truncated cookies.
     [William Rowe, Ruediger Pluem, Jim Jagielski]

  *) SECURITY: CVE-2013-6438 (cve.mitre.org)
     mod_dav: Keep track of length of cdata properly when removing
     leading spaces. Eliminates a potential denial of service from
     specifically crafted DAV WRITE requests
     [Amin Tora <Amin.Tora neustar.biz>]

  *) core: Support named groups and backreferences within the LocationMatch,
     DirectoryMatch, FilesMatch and ProxyMatch directives. (Requires
     non-ancient PCRE library) [Graham Leggett]

  *) core: draft-ietf-httpbis-p1-messaging-23 corrections regarding
     TE/CL conflicts. [Yann Ylavic <ylavic.dev gmail com>, Jim Jagielski]

  *) mod_dir: Add DirectoryCheckHandler to allow a 2.2-like behavior, skipping
     execution when a handler is already set. PR53929. [Eric Covener]

  *) mod_ssl: Do not perform SNI / Host header comparison in case of a
     forward proxy request. [Ruediger Pluem]

  *) mod_ssl: Remove the hardcoded algorithm-type dependency for the
     SSLCertificateFile and SSLCertificateKeyFile directives, to enable
     future algorithm agility, and deprecate the SSLCertificateChainFile
     directive (obsoleted by SSLCertificateFile). [Kaspar Brand]

  *) mod_rewrite: Add RewriteOptions InheritDown, InheritDownBefore,
     and IgnoreInherit to allow RewriteRules to be pushed from parent scopes
     to child scopes without explicitly configuring each child scope.
     PR56153.  [Edward Lu <Chaosed0 gmail com>]

  *) prefork: Fix long delays when doing a graceful restart.
     PR 54852 [Jim Jagielski, Arkadiusz Miskiewicz <arekm maven pl>]

  *) FreeBSD: Disable IPv4-mapped listening sockets by default for versions
     5+ instead of just for FreeBSD 5. PR 53824. [Jeff Trawick]

  *) mod_proxy_wstunnel: Avoid busy loop on client errors, drop message
     IDs 02445, 02446, and 02448 to TRACE1 from DEBUG. PR 56145.
     [Joffroy Christen <joffroy.christen solvaxis com>, Eric Covener]

  *) mod_remoteip: Correct the trusted proxy match test. PR 54651.
     [Yoshinori Ehara <yoshinori ehara gmail com>, Eugene L <eugenel amazon com>]

  *) mod_proxy_fcgi: Fix error message when an unexpected protocol version
     number is received from the application.  PR 56110.  [Jeff Trawick]

  *) mod_remoteip: Use the correct IP addresses to populate the proxy_ips field.
     PR 55972. [Mike Rumph]

  *) mod_lua: Update r:setcookie() to accept a table of options and add domain,
     path and httponly to the list of options available to set.
     PR 56128 [Edward Lu <Chaosed0 gmail com>, Daniel Gruno]

  *) mod_lua: Fix r:setcookie() to add, rather than replace,
     the Set-Cookie header. PR56105
     [Kevin J Walters <kjw ms com>, Edward Lu <Chaosed0 gmail com>]

  *) mod_lua: Allow for database results to be returned as a hash with
     row-name/value pairs instead of just row-number/value. [Daniel Gruno]

  *) mod_rewrite: Add %{CONN_REMOTE_ADDR} as the non-useragent counterpart to
     %{REMOTE_ADDR}. PR 56094. [Edward Lu <Chaosed0 gmail com>]

  *) WinNT MPM: If ap_run_pre_connection() fails or sets c->aborted, don't
     save the socket for reuse by the next worker as if it were an
     APR_SO_DISCONNECTED socket. Restores 2.2 behavior. [Er

  Build ID:          20140322212000-24643
  Job owner:         ohauer at FreeBSD.org
  Buildtime:         10 minutes
  Enddate:           Sat, 22 Mar 2014 21:30:08 GMT

  Revision:          348808
  Repository:        https://svnweb.freebsd.org/ports?view=revision&revision=348808


    Port:            www/apache24 

      Buildgroup:     10.0-QAT/amd64
      Buildstatus:   LEFTOVERS
      Log: https://qat.redports.org//~ohauer@FreeBSD.org/20140322212000-24643-305680/apache24-2.4.9.log

      Buildgroup:     10.0-QAT/i386
      Buildstatus:   LEFTOVERS
      Log: https://qat.redports.org//~ohauer@FreeBSD.org/20140322212000-24643-305681/apache24-2.4.9.log

      Buildgroup:     8.4-QAT/amd64
      Buildstatus:   SUCCESS
      Log: https://qat.redports.org//~ohauer@FreeBSD.org/20140322212000-24643-305682/apache24-2.4.9.log

      Buildgroup:     8.4-QAT/i386
      Buildstatus:   SUCCESS
      Log: https://qat.redports.org//~ohauer@FreeBSD.org/20140322212000-24643-305683/apache24-2.4.9.log

      Buildgroup:     9.2-QAT/amd64
      Buildstatus:   SUCCESS
      Log: https://qat.redports.org//~ohauer@FreeBSD.org/20140322212000-24643-305684/apache24-2.4.9.log

      Buildgroup:     9.2-QAT/i386
      Buildstatus:   SUCCESS
      Log: https://qat.redports.org//~ohauer@FreeBSD.org/20140322212000-24643-305685/apache24-2.4.9.log

Buildarchive URL: <https://qat.redports.org/buildarchive/20140322212000-24643>
redports <https://qat.redports.org/>

More information about the freebsd-ports mailing list