diff options
| author | itojun <itojun@pkgsrc.org> | 2002-06-18 01:45:36 +0000 |
|---|---|---|
| committer | itojun <itojun@pkgsrc.org> | 2002-06-18 01:45:36 +0000 |
| commit | 86a26c25944f25e87b01a7ef83c4f508133f9a34 (patch) | |
| tree | cd0f682cb62a14d790d2c74f0869ea541a264f9b /www/apache | |
| parent | 0bc3c6f99707af11db662c8224d4a9001134c2ae (diff) | |
| download | pkgsrc-86a26c25944f25e87b01a7ef83c4f508133f9a34.tar.gz | |
http chunk transfer vulnerability
http://httpd.apache.org/info/security_bulletin_20020617.txt
Diffstat (limited to 'www/apache')
| -rw-r--r-- | www/apache/distinfo | 3 | ||||
| -rw-r--r-- | www/apache/patches/patch-an | 13 |
2 files changed, 15 insertions, 1 deletions
diff --git a/www/apache/distinfo b/www/apache/distinfo index b59570f845c..6c53d694304 100644 --- a/www/apache/distinfo +++ b/www/apache/distinfo @@ -1,4 +1,4 @@ -$NetBSD: distinfo,v 1.15 2002/04/02 14:13:02 jlam Exp $ +$NetBSD: distinfo,v 1.16 2002/06/18 01:45:36 itojun Exp $ SHA1 (apache_1.3.24.tar.gz) = b758d4227820c3cfb33f8237926391fddee736eb Size (apache_1.3.24.tar.gz) = 2232504 bytes @@ -19,3 +19,4 @@ SHA1 (patch-aj) = 1cdd2f010d381ec9c13f59b31caab7d1f6f63100 SHA1 (patch-ak) = 8f790a692ed9b2dd6943be43fa1cf7629c673955 SHA1 (patch-al) = a27b9676998621229dc3a1d920ea44b8e622feb2 SHA1 (patch-am) = d05f7c30b73c0e90daf17d9d1c4838be7fd73b02 +SHA1 (patch-an) = 6c148fa5c3ffc8e4266e29a2ac901b802e1170d6 diff --git a/www/apache/patches/patch-an b/www/apache/patches/patch-an new file mode 100644 index 00000000000..b88bf342a3f --- /dev/null +++ b/www/apache/patches/patch-an @@ -0,0 +1,13 @@ +$NetBSD: patch-an,v 1.4 2002/06/18 01:45:37 itojun Exp $ + +--- src/main/http_protocol.c- Tue Jun 18 10:42:38 2002 ++++ src/main/http_protocol.c Tue Jun 18 10:42:50 2002 +@@ -2171,7 +2171,7 @@ + + /* Otherwise, we are in the midst of reading a chunk of data */ + +- len_to_read = (r->remaining > bufsiz) ? bufsiz : r->remaining; ++ len_to_read = (r->remaining > (unsigned int)bufsiz) ? bufsiz : r->remaining; + + len_read = ap_bread(r->connection->client, buffer, len_to_read); + if (len_read <= 0) { |