diff options
| author | obache <obache@pkgsrc.org> | 2010-11-23 11:55:15 +0000 |
|---|---|---|
| committer | obache <obache@pkgsrc.org> | 2010-11-23 11:55:15 +0000 |
| commit | e72a5abbb94e917de42314cc8a6de008b4bda518 (patch) | |
| tree | 6b2054970f8e44c48366e1c4bc7be12a8637805d /www | |
| parent | 4fa2d5bf7345631718f8fc35cd0413fe764f95e2 (diff) | |
| download | pkgsrc-e72a5abbb94e917de42314cc8a6de008b4bda518.tar.gz | |
Update ap2-fcgid to 2.3.6.
Changes with mod_fcgid 2.3.6
*) SECURITY: CVE-2010-3872 (cve.mitre.org)
Fix possible stack buffer overwrite. Diagnosed by the reporter.
P R 49406. [Edgar Frank <ef-lists email.de>]
*) Change the default for FcgidMaxRequestLen from 1GB to 128K.
Administrators should change this to an appropriate value based on
site requirements. [Jeff Trawick]
*) Allow FastCGI apps more time to exit at shutdown before being
forcefully killed. [Jeff Trawick]
*) Correct a problem that resulted in FcgidMaxProcesses being ignored
in some situations. P R 48981. [<rkosolapov gmail.com>]
*) Fix the search for processes with the proper vhost config when
ServerName isn't set in every vhost or a module updates
r->server->server_hostname dynamically (e.g., mod_vhost_cdb)
or a module updates r->server dynamically (e.g., mod_vhost_ldap).
[Jeff Trawick]
*) FcgidPassHeader now maps header names to environment variable names
in the usual manner: The header name is converted to upper case and
is prefixed with HTTP_. An additional environment variable is
created with the legacy name. P R 48964. [Jeff Trawick]
*) Allow processes to be reused within multiple phases of a request
by releasing them into the free list as soon as possible.
[Chris Darroch]
*) Fix lookup of process command lines when using FcgidWrapper or
access control directives, including within .htaccess files.
[Chris Darroch]
*) Resolve a regression in 2.3.5 with httpd 2.0.x on some Unix platforms;
ownership of mutex files was incorrect, resulting in a startup failure.
P R 48651. [Jeff Trawick, <pservit gmail.com>]
*) Return 500 instead of segfaulting when the application returns no output.
[Tatsuki Sugiura <sugi nemui.org>, Jeff Trawick]
*) In FCGI_AUTHORIZER role, avoid spawning a new process for every
different HTTP request. [Chris Darroch]
Diffstat (limited to 'www')
| -rw-r--r-- | www/ap2-fcgid/Makefile | 4 | ||||
| -rw-r--r-- | www/ap2-fcgid/distinfo | 8 |
2 files changed, 6 insertions, 6 deletions
diff --git a/www/ap2-fcgid/Makefile b/www/ap2-fcgid/Makefile index 1c58f592293..3fe6b28cb6c 100644 --- a/www/ap2-fcgid/Makefile +++ b/www/ap2-fcgid/Makefile @@ -1,6 +1,6 @@ -# $NetBSD: Makefile,v 1.6 2010/07/02 20:50:34 joerg Exp $ +# $NetBSD: Makefile,v 1.7 2010/11/23 11:55:15 obache Exp $ -DISTNAME= mod_fcgid-2.3.5 +DISTNAME= mod_fcgid-2.3.6 PKGNAME= ${APACHE_PKG_PREFIX}-${DISTNAME:S/mod_//} CATEGORIES= www MASTER_SITES= ${MASTER_SITE_APACHE:=httpd/mod_fcgid/} diff --git a/www/ap2-fcgid/distinfo b/www/ap2-fcgid/distinfo index 31e22746cf8..f4c0427da61 100644 --- a/www/ap2-fcgid/distinfo +++ b/www/ap2-fcgid/distinfo @@ -1,6 +1,6 @@ -$NetBSD: distinfo,v 1.3 2010/02/15 11:38:44 fhajny Exp $ +$NetBSD: distinfo,v 1.4 2010/11/23 11:55:15 obache Exp $ -SHA1 (mod_fcgid-2.3.5.tar.gz) = e64d21ee27b8c0327c1c2754a68173def5c80de6 -RMD160 (mod_fcgid-2.3.5.tar.gz) = 9e989b6f91dcffa8a61dd855aa305bfc5c698dab -Size (mod_fcgid-2.3.5.tar.gz) = 97784 bytes +SHA1 (mod_fcgid-2.3.6.tar.gz) = 018245896f331909e896685ab3ca86b163846e4d +RMD160 (mod_fcgid-2.3.6.tar.gz) = 962edaee41d502fcfbcb9d18028a43c72b54933f +Size (mod_fcgid-2.3.6.tar.gz) = 101883 bytes SHA1 (patch-aa) = 412ff767f32e569e7cee1940d382ea2d0f4ea235 |