diff options
author | Philip M. Gollucci <pgollucci@FreeBSD.org> | 2010-05-13 00:30:19 +0000 |
---|---|---|
committer | Philip M. Gollucci <pgollucci@FreeBSD.org> | 2010-05-13 00:30:19 +0000 |
commit | a0a564f0bc7174559ba406cb1db81be96aa29f9b (patch) | |
tree | e58ee24728b2a4ec71ce4bd2facae784ee26ef4d /editors | |
parent | Backport of the Apache 2.3 module that replaces the apparent client (diff) |
- Fix openssl rengotiation patch [1]
- Fix the openssl from ports flag
- Bump PORTREVISION
- Also patch 2 more CVEs
*) SECURITY: CVE-2010-0434 (cve.mitre.org)
Ensure each subrequest has a shallow copy of headers_in so that the
parent request headers are not corrupted. Elimiates a problematic
optimization in the case of no request body. PR 48359
[Jake Scott, William Rowe, Ruediger Pluem]
*) SECURITY: CVE-2008-2364 (cve.mitre.org)
mod_proxy_http: Better handling of excessive interim responses
from origin server to prevent potential denial of service and high
memory usage. Reported by Ryujiro Shibuya. [Ruediger Pluem,
Joe Orton, Jim Jagielski]
PR: ports/146389 [1]
Submitted by: several [1]
With Hat: apache@
Notes
Notes:
svn path=/head/; revision=254235
Diffstat (limited to 'editors')
0 files changed, 0 insertions, 0 deletions