diff options
author | Clement Laforet <clement@FreeBSD.org> | 2007-03-18 17:13:58 +0000 |
---|---|---|
committer | Clement Laforet <clement@FreeBSD.org> | 2007-03-18 17:13:58 +0000 |
commit | 5fec80adeafc62c80863b3bbce7f8983437f30ce (patch) | |
tree | 9453774b0e848df0faeb5c3b9ef98aa0be5884a0 /www/apache13-ssl/files | |
parent | n -CURRENT, bsdtar will preserve the attributes of the archive automatically (diff) |
- Update to 1.3.37-1.57
Notes
Notes:
svn path=/head/; revision=187661
Diffstat (limited to 'www/apache13-ssl/files')
-rw-r--r-- | www/apache13-ssl/files/patch-secfix-CAN-2005-3352 | 35 | ||||
-rw-r--r-- | www/apache13-ssl/files/patch-secfix-CVE-2006-3747 | 13 |
2 files changed, 0 insertions, 48 deletions
diff --git a/www/apache13-ssl/files/patch-secfix-CAN-2005-3352 b/www/apache13-ssl/files/patch-secfix-CAN-2005-3352 deleted file mode 100644 index 8febc0e58935..000000000000 --- a/www/apache13-ssl/files/patch-secfix-CAN-2005-3352 +++ /dev/null @@ -1,35 +0,0 @@ ---- src/main/util.c (original) -+++ src/main/util.c Mon Dec 12 08:36:54 2005 -@@ -1722,6 +1722,8 @@ - j += 3; - else if (s[i] == '&') - j += 4; -+ else if (s[i] == '"') -+ j += 5; - - if (j == 0) - return ap_pstrndup(p, s, i); -@@ -1739,6 +1741,10 @@ - else if (s[i] == '&') { - memcpy(&x[j], "&", 5); - j += 4; -+ } -+ else if (s[i] == '"') { -+ memcpy(&x[j], """, 6); -+ j += 5; - } - else - x[j] = s[i]; - ---- src/modules/standard/mod_imap.c (original) -+++ src/modules/standard/mod_imap.c Mon Dec 12 08:36:54 2005 -@@ -328,7 +328,7 @@ - if (!strcasecmp(value, "referer")) { - referer = ap_table_get(r->headers_in, "Referer"); - if (referer && *referer) { -- return ap_pstrdup(r->pool, referer); -+ return ap_escape_html(r->pool, referer); - } - else { - /* XXX: This used to do *value = '\0'; ... which is totally bogus - diff --git a/www/apache13-ssl/files/patch-secfix-CVE-2006-3747 b/www/apache13-ssl/files/patch-secfix-CVE-2006-3747 deleted file mode 100644 index fc06bed772bb..000000000000 --- a/www/apache13-ssl/files/patch-secfix-CVE-2006-3747 +++ /dev/null @@ -1,13 +0,0 @@ -Index: src/modules/standard/mod_rewrite.c -=================================================================== ---- src/modules/standard/mod_rewrite.c (revision 421288) -+++ src/modules/standard/mod_rewrite.c (working copy) -@@ -2736,7 +2736,7 @@ - int c = 0; - - token[0] = cp = ap_pstrdup(p, cp); -- while (*cp && c < 5) { -+ while (*cp && c < 4) { - if (*cp == '?') { - token[++c] = cp + 1; - *cp = '\0'; |