diff options
| author | pgollucci <pgollucci@FreeBSD.org> | 2009-12-10 07:48:01 +0800 |
|---|---|---|
| committer | pgollucci <pgollucci@FreeBSD.org> | 2009-12-10 07:48:01 +0800 |
| commit | cdd6058cb1908c58ee3c23d9a5d8b438a0120b24 (patch) | |
| tree | f0e6d97f560a9e9f83b9ea61b69bf1c1b381ae08 /www/apache22 | |
| parent | 667d9e97a106ccf5b07ff4a530badfa9014c4b31 (diff) | |
| download | freebsd-ports-gnome-cdd6058cb1908c58ee3c23d9a5d8b438a0120b24.tar.gz freebsd-ports-gnome-cdd6058cb1908c58ee3c23d9a5d8b438a0120b24.tar.zst freebsd-ports-gnome-cdd6058cb1908c58ee3c23d9a5d8b438a0120b24.zip | |
- Update to 2.2.14
- With hat apache@
Note: The 3 CVE's are a no-op for the FreeBSD port --
date: 2009/08/25 05:33:03; author: kuriyama; state: Exp; lines: +0 -0
(Forced commit)
- 2.2.13 (acutally 2.2.12) includes fixes for several CVEs. [1]
but in our ports tree, APR related ones (CVE-2009-0023,
CVE-2009-1955, CVE-2009-1956) were already backported in 2.2.11_5.
References: http://www.apache.org/dist/httpd/CHANGES_2.2.12 [1]
Changes:
---------
*) SECURITY: CVE-2009-2699 (cve.mitre.org)
Fixed in APR 1.3.9. Faulty error handling in the Solaris pollset support
(Event Port backend) which could trigger hangs in the prefork and event
MPMs on that platform. PR 47645. [Jeff Trawick]
*) SECURITY: CVE-2009-3095 (cve.mitre.org)
mod_proxy_ftp: sanity check authn credentials.
[Stefan Fritsch <sf fritsch.de>, Joe Orton]
*) SECURITY: CVE-2009-3094 (cve.mitre.org)
mod_proxy_ftp: NULL pointer dereference on error paths.
[Stefan Fritsch <sf fritsch.de>, Joe Orton]
*) mod_proxy_scgi: Backport from trunk. [André Malo]
*) mod_ldap: Don't try to resolve file-based user ids to a DN when AuthLDAPURL
has been defined at a very high level. PR 45946. [Eric Covener]
*) htcacheclean: 19 ways to fail, 1 error message. Fixed. [Graham Leggett]
*) mod_ldap: Bring the LDAPCacheEntries and LDAPOpCacheEntries
usage() in synch with the manual and the implementation (0 and -1
both disable the cache). [Eric Covener]
*) mod_ssl: The error message when SSLCertificateFile is missing should
at least give the name or position of the problematic virtual host
definition. [Stefan Fritsch sf sfritsch.de]
*) htdbm: Fix possible buffer overflow if dbm database has very
long values. PR 30586 [Dan Poirier]
*) Add support for HTTP PUT to ab. [Jeff Barnes <jbarnesweb yahoo.com>]
*) mod_ssl: Fix SSL_*_DN_UID variables to use the 'userID' attribute
type. PR 45107. [Michael Ströder <michael stroeder.com>,
Peter Sylvester <peter.sylvester edelweb.fr>]
*) mod_cache: Add CacheIgnoreURLSessionIdentifiers directive to ignore
defined session identifiers encoded in the URL when caching.
[Ruediger Pluem]
*) mod_mem_cache: fix seg fault under load due to pool concurrency problem
PR: 47672 [Dan Poirier <poirier pobox.com>]
*) mod_autoindex: Correctly create an empty cell if the description
for a file is missing. PR 47682 [Peter Poeml <poeml suse.de>]
Diffstat (limited to 'www/apache22')
| -rw-r--r-- | www/apache22/Makefile | 2 | ||||
| -rw-r--r-- | www/apache22/distinfo | 6 |
2 files changed, 4 insertions, 4 deletions
diff --git a/www/apache22/Makefile b/www/apache22/Makefile index e1f253444fb8..1e0462d85bcf 100644 --- a/www/apache22/Makefile +++ b/www/apache22/Makefile @@ -8,7 +8,7 @@ # PORTNAME= apache -PORTVERSION= 2.2.13 +PORTVERSION= 2.2.14 CATEGORIES= www MASTER_SITES= ${MASTER_SITE_APACHE_HTTPD} DISTNAME= httpd-${PORTVERSION} diff --git a/www/apache22/distinfo b/www/apache22/distinfo index 04da973cb49b..9393c29ae41e 100644 --- a/www/apache22/distinfo +++ b/www/apache22/distinfo @@ -1,3 +1,3 @@ -MD5 (apache22/httpd-2.2.13.tar.bz2) = 8d8d904e7342125825ec70f03c5745ef -SHA256 (apache22/httpd-2.2.13.tar.bz2) = 24a812e010d936a3114141bad56461fcaa1089aa720bd16355feb3516ab8d6d6 -SIZE (apache22/httpd-2.2.13.tar.bz2) = 5300199 +MD5 (apache22/httpd-2.2.14.tar.bz2) = a5226203aaf97e5b941c41a71c112704 +SHA256 (apache22/httpd-2.2.14.tar.bz2) = b2deab8a5e797fde7a04fb4a5ebfa9c80f767d064dd19dcd2857c94838ae3ac6 +SIZE (apache22/httpd-2.2.14.tar.bz2) = 5147171 |