diff options
| author | lkundrak <lkundrak@pkgsrc.org> | 2007-06-28 01:24:39 +0000 |
|---|---|---|
| committer | lkundrak <lkundrak@pkgsrc.org> | 2007-06-28 01:24:39 +0000 |
| commit | b8743d165d8e3b47c4616394462b80b22d6e1583 (patch) | |
| tree | 23f7496db16e9971ef00d73f7885adf716414975 /www | |
| parent | 92f46ebc1679eb161d158052fefffd9708ae1808 (diff) | |
| download | pkgsrc-b8743d165d8e3b47c4616394462b80b22d6e1583.tar.gz | |
Description for one patch referred to incorrect issue, the other patch
lacked ending semicolons.
Diffstat (limited to 'www')
| -rw-r--r-- | www/apache/distinfo | 6 | ||||
| -rw-r--r-- | www/apache/patches/patch-ar | 4 | ||||
| -rw-r--r-- | www/apache/patches/patch-as | 6 |
3 files changed, 8 insertions, 8 deletions
diff --git a/www/apache/distinfo b/www/apache/distinfo index d5d876c2876..eafedfb47d6 100644 --- a/www/apache/distinfo +++ b/www/apache/distinfo @@ -1,4 +1,4 @@ -$NetBSD: distinfo,v 1.55 2007/06/28 00:43:35 lkundrak Exp $ +$NetBSD: distinfo,v 1.56 2007/06/28 01:24:39 lkundrak Exp $ SHA1 (apache_1.3.37.tar.gz) = b422fac1dda10baa483e8f4378dff58faf3f85b4 RMD160 (apache_1.3.37.tar.gz) = de84adf2fd0a745c32072ca5dc5e1374cfcf04f7 @@ -24,5 +24,5 @@ SHA1 (patch-al) = cdb6d8ecbf418024e8a198ebc9c8f15f259397c1 SHA1 (patch-am) = b8551fca1ec8a62b3b420435479a896a7de1dfe0 SHA1 (patch-ao) = 9ec5f32b2e9cf4c423b5d819fc76f652b27c6c29 SHA1 (patch-aq) = aee36110e604f990a1b017268810a28358c90178 -SHA1 (patch-ar) = 1d53b1256985c1d50a70d5430bbf29eb8b3b2be0 -SHA1 (patch-as) = 3bb0c08c09975234cafa63662c31c10e4770374c +SHA1 (patch-ar) = 882ad0cf40e3f6ebfcf8a210e0ac5e6f7e707909 +SHA1 (patch-as) = 404167a7449f2e5b90d5035ced9c838942f08555 diff --git a/www/apache/patches/patch-ar b/www/apache/patches/patch-ar index 6df52647684..14c506d7a3f 100644 --- a/www/apache/patches/patch-ar +++ b/www/apache/patches/patch-ar @@ -1,6 +1,6 @@ -$NetBSD: patch-ar,v 1.6 2007/06/28 00:43:36 lkundrak Exp $ +$NetBSD: patch-ar,v 1.7 2007/06/28 01:24:39 lkundrak Exp $ -Fix for CVE-2007-1863 remote crash when mod_cache enabled. +Fix for CVE-2007-3304 denial of service. --- src/main/http_main.c.orig 2007-06-28 02:10:30.000000000 +0200 +++ src/main/http_main.c diff --git a/www/apache/patches/patch-as b/www/apache/patches/patch-as index e8feacb19f0..dbdbb54d98c 100644 --- a/www/apache/patches/patch-as +++ b/www/apache/patches/patch-as @@ -1,4 +1,4 @@ -$NetBSD: patch-as,v 1.6 2007/06/28 00:43:36 lkundrak Exp $ +$NetBSD: patch-as,v 1.7 2007/06/28 01:24:39 lkundrak Exp $ Fix for CVE-2006-5752 XSS in mod_status with ExtendedStatus on. @@ -36,7 +36,7 @@ Fix for CVE-2006-5752 XSS in mod_status with ExtendedStatus on. score_record.client, vhost ? vhost->server_hostname : "(unavailable)", - ap_escape_html(r->pool, score_record.request)); -+ ap_escape_html(r->pool, ap_escape_logitem(r->pool, score_record.request))) ++ ap_escape_html(r->pool, ap_escape_logitem(r->pool, score_record.request))); #else ap_rprintf(r, "<td>%s<td nowrap>%s<td nowrap>%s</tr>\n\n", @@ -44,7 +44,7 @@ Fix for CVE-2006-5752 XSS in mod_status with ExtendedStatus on. vhost ? ap_escape_html(r->pool, vhost->server_hostname) : "(unavailable)", - ap_escape_html(r->pool, score_record.request)); -+ ap_escape_html(r->pool, ap_escape_logitem(r->pool, score_record.request))) ++ ap_escape_html(r->pool, ap_escape_logitem(r->pool, score_record.request))); #endif } /* no_table_report */ } /* !short_report */ |