summaryrefslogtreecommitdiff
path: root/www/apache13-ssl/files
diff options
context:
space:
mode:
authorClement Laforet <clement@FreeBSD.org>2007-03-18 17:13:58 +0000
committerClement Laforet <clement@FreeBSD.org>2007-03-18 17:13:58 +0000
commit5fec80adeafc62c80863b3bbce7f8983437f30ce (patch)
tree9453774b0e848df0faeb5c3b9ef98aa0be5884a0 /www/apache13-ssl/files
parentn -CURRENT, bsdtar will preserve the attributes of the archive automatically (diff)
- Update to 1.3.37-1.57
Notes
Notes: svn path=/head/; revision=187661
Diffstat (limited to 'www/apache13-ssl/files')
-rw-r--r--www/apache13-ssl/files/patch-secfix-CAN-2005-335235
-rw-r--r--www/apache13-ssl/files/patch-secfix-CVE-2006-374713
2 files changed, 0 insertions, 48 deletions
diff --git a/www/apache13-ssl/files/patch-secfix-CAN-2005-3352 b/www/apache13-ssl/files/patch-secfix-CAN-2005-3352
deleted file mode 100644
index 8febc0e58935..000000000000
--- a/www/apache13-ssl/files/patch-secfix-CAN-2005-3352
+++ /dev/null
@@ -1,35 +0,0 @@
---- src/main/util.c (original)
-+++ src/main/util.c Mon Dec 12 08:36:54 2005
-@@ -1722,6 +1722,8 @@
- j += 3;
- else if (s[i] == '&')
- j += 4;
-+ else if (s[i] == '"')
-+ j += 5;
-
- if (j == 0)
- return ap_pstrndup(p, s, i);
-@@ -1739,6 +1741,10 @@
- else if (s[i] == '&') {
- memcpy(&x[j], "&amp;", 5);
- j += 4;
-+ }
-+ else if (s[i] == '"') {
-+ memcpy(&x[j], "&quot;", 6);
-+ j += 5;
- }
- else
- x[j] = s[i];
-
---- src/modules/standard/mod_imap.c (original)
-+++ src/modules/standard/mod_imap.c Mon Dec 12 08:36:54 2005
-@@ -328,7 +328,7 @@
- if (!strcasecmp(value, "referer")) {
- referer = ap_table_get(r->headers_in, "Referer");
- if (referer && *referer) {
-- return ap_pstrdup(r->pool, referer);
-+ return ap_escape_html(r->pool, referer);
- }
- else {
- /* XXX: This used to do *value = '\0'; ... which is totally bogus
-
diff --git a/www/apache13-ssl/files/patch-secfix-CVE-2006-3747 b/www/apache13-ssl/files/patch-secfix-CVE-2006-3747
deleted file mode 100644
index fc06bed772bb..000000000000
--- a/www/apache13-ssl/files/patch-secfix-CVE-2006-3747
+++ /dev/null
@@ -1,13 +0,0 @@
-Index: src/modules/standard/mod_rewrite.c
-===================================================================
---- src/modules/standard/mod_rewrite.c (revision 421288)
-+++ src/modules/standard/mod_rewrite.c (working copy)
-@@ -2736,7 +2736,7 @@
- int c = 0;
-
- token[0] = cp = ap_pstrdup(p, cp);
-- while (*cp && c < 5) {
-+ while (*cp && c < 4) {
- if (*cp == '?') {
- token[++c] = cp + 1;
- *cp = '\0';