ref: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1623 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720
Responsible Changed From-To: freebsd-ports-bugs->apache Over to maintainer (via the GNATS Auto Assign Tool)
Responsible Changed From-To: apache->pgollucci I will take it. This isn't correct. www/apache22 forcibly depends on devel/apr1 which has had a patched apr-util for several weeks now. The update itself is valid though.
pgollucci 2010-10-20 21:04:58 UTC FreeBSD ports repository Modified files: www/apache22 Makefile distinfo Log: - Update to 2.2.17 ** * Note, no CVE affects the FREEBSD port. devel/apr1 was updated to * apr-util 1.3.10 on 2010/10/06 05:32:24. ** Changes: http://www.apache.org/dist/httpd/CHANGES_2.2 PR: ports/151594 Submitted by: Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp> With Hat: apache@ <ChangeLog> *) prefork MPM: Run cleanups for final request when process exits gracefully to work around a flaw in apr-util. PR 43857. [Tom Donovan] *) mod_reqtimeout: Do not wrongly enforce timeouts for mod_proxy's backend connections and other protocol handlers (like mod_ftp). Enforce the timeout for AP_MODE_GETLINE. If there is a timeout, shorten the lingering close time from 30 to 2 seconds. [Stefan Fritsch] *) Proxy balancer: support setting error status according to HTTP response code from a backend. PR 48939. [Daniel Ruggeri <DRuggeri primary.net>] *) mod_authnz_ldap: If AuthLDAPCharsetConfig is set, also convert the password to UTF-8. PR 45318. [Johannes Müller <joh_m gmx.de>, Stefan Fritsch] *) core: check symlink ownership if both FollowSymlinks and SymlinksIfOwnerMatch are set [Nick Kew] *) core: fix origin checking in SymlinksIfOwnerMatch PR 36783 [Robert L Mathews <rob-apache.org.bugs tigertech.net>] *) mod_headers: Enable multi-match-and-replace edit option PR 46594 [Nick Kew] *) mod_log_config: Make ${cookie}C correctly match whole cookie names instead of substrings. PR 28037. [Dan Franklin <dan dan-franklin.com>, Stefan Fritsch] *) mod_dir, mod_negotiation: Pass the output filter information to newly created sub requests; as these are later on used as true requests with an internal redirect. This allows for mod_cache et.al. to trap the results of the redirect. PR 17629, 43939 [Dirk-Willem van Gulik, Jim Jagielski, Joe Orton, Ruediger Pluem] *) rotatelogs: Fix possible buffer overflow if admin configures a mongo log file path. [Jeff Trawick] *) mod_ssl: Do not do overlapping memcpy. PR 45444 [Joe Orton] *) vhost: A purely-numeric Host: header should not be treated as a port. PR 44979 [Nick Kew] *) core: (re)-introduce -T commandline option to suppress documentroot check at startup. PR 41887 [Jan van den Berg <janvdberg gmail.com>] </ChangeLog> Revision Changes Path 1.282 +1 -2 ports/www/apache22/Makefile 1.81 +3 -3 ports/www/apache22/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: open->closed Committed, Thanks!
A commit references this bug: Author: markj Date: Thu Apr 2 18:18:42 UTC 2015 New revision: 280998 URL: https://svnweb.freebsd.org/changeset/base/280998 Log: arp(8): add support for printing and deleting entries of type IFT_INFINIBAND, used in IPoIB. PR: 151594 Submitted by: Anthony Cornehl <accornehl@gmail.com> Reviewed by: hselasky MFC after: 1 week Sponsored by: EMC / Isilon Storage Division Changes: head/usr.sbin/arp/arp.c
A commit references this bug: Author: markj Date: Sun Apr 12 21:28:55 UTC 2015 New revision: 281471 URL: https://svnweb.freebsd.org/changeset/base/281471 Log: MFC r280998: arp(8): add support for printing and deleting entries of type IFT_INFINIBAND, used in IPoIB. PR: 151594 Changes: _U stable/10/ stable/10/usr.sbin/arp/arp.c