summaryrefslogtreecommitdiff
path: root/www/apache
diff options
context:
space:
mode:
authoritojun <itojun@pkgsrc.org>2002-06-18 01:45:36 +0000
committeritojun <itojun@pkgsrc.org>2002-06-18 01:45:36 +0000
commit86a26c25944f25e87b01a7ef83c4f508133f9a34 (patch)
treecd0f682cb62a14d790d2c74f0869ea541a264f9b /www/apache
parent0bc3c6f99707af11db662c8224d4a9001134c2ae (diff)
downloadpkgsrc-86a26c25944f25e87b01a7ef83c4f508133f9a34.tar.gz
http chunk transfer vulnerability
http://httpd.apache.org/info/security_bulletin_20020617.txt
Diffstat (limited to 'www/apache')
-rw-r--r--www/apache/distinfo3
-rw-r--r--www/apache/patches/patch-an13
2 files changed, 15 insertions, 1 deletions
diff --git a/www/apache/distinfo b/www/apache/distinfo
index b59570f845c..6c53d694304 100644
--- a/www/apache/distinfo
+++ b/www/apache/distinfo
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.15 2002/04/02 14:13:02 jlam Exp $
+$NetBSD: distinfo,v 1.16 2002/06/18 01:45:36 itojun Exp $
SHA1 (apache_1.3.24.tar.gz) = b758d4227820c3cfb33f8237926391fddee736eb
Size (apache_1.3.24.tar.gz) = 2232504 bytes
@@ -19,3 +19,4 @@ SHA1 (patch-aj) = 1cdd2f010d381ec9c13f59b31caab7d1f6f63100
SHA1 (patch-ak) = 8f790a692ed9b2dd6943be43fa1cf7629c673955
SHA1 (patch-al) = a27b9676998621229dc3a1d920ea44b8e622feb2
SHA1 (patch-am) = d05f7c30b73c0e90daf17d9d1c4838be7fd73b02
+SHA1 (patch-an) = 6c148fa5c3ffc8e4266e29a2ac901b802e1170d6
diff --git a/www/apache/patches/patch-an b/www/apache/patches/patch-an
new file mode 100644
index 00000000000..b88bf342a3f
--- /dev/null
+++ b/www/apache/patches/patch-an
@@ -0,0 +1,13 @@
+$NetBSD: patch-an,v 1.4 2002/06/18 01:45:37 itojun Exp $
+
+--- src/main/http_protocol.c- Tue Jun 18 10:42:38 2002
++++ src/main/http_protocol.c Tue Jun 18 10:42:50 2002
+@@ -2171,7 +2171,7 @@
+
+ /* Otherwise, we are in the midst of reading a chunk of data */
+
+- len_to_read = (r->remaining > bufsiz) ? bufsiz : r->remaining;
++ len_to_read = (r->remaining > (unsigned int)bufsiz) ? bufsiz : r->remaining;
+
+ len_read = ap_bread(r->connection->client, buffer, len_to_read);
+ if (len_read <= 0) {