FreshPorts -- The Place For Ports If you buy from Amazon USA, please support us by using this link.
Follow us
Blog
Twitter

I am looking for an LTO tape library. Do you have one to spare?
Commit found by message id
Thu, 27 Jul 2006
[ 20:26:29 clement ] Original commit 
apache13-modperl www  Deleted Deprecated Expired files touched by this commit  This port version is marked as vulnerable. The Apache 1.3 webserver with a statically embedded perl interpreter
apache13-ssl www  Deleted Forbidden Deprecated Expired Ignore files touched by this commit  This port version is marked as vulnerable. Apache secure webserver integrating OpenSSL
apache20 www  Deleted Deprecated Expired files touched by this commit  This port version is marked as vulnerable. Version 2.0.x of Apache web server with prefork MPM.
apache21 www  Deleted Broken Deprecated Ignore files touched by this commit  This port version is marked as vulnerable. Version 2.1 of Apache web server with prefork MPM.
apache22 www files touched by this commit  An older version of this port was marked as vulnerable. Version 2.2.x of Apache web server with prefork MPM.
- Fix security issue in mod_rewrite.
All people using mod_rewrite are strongly encouraged to update.

An off-by-one flaw exists in the Rewrite module, mod_rewrite.
Depending on the manner in which Apache httpd was compiled, this
software defect may result in a vulnerability which, in combination
with certain types of Rewrite rules in the web server configuration
files, could be triggered remotely.  For vulnerable builds, the nature
of the vulnerability can be denial of service (crashing of web server
processes) or potentially allow arbitrary code execution.
This issue has been rated as having important security impact
by the Apache HTTP Server Security Team

Updates to latest versions will follow soon.

Notified by:    so@ (simon)
Obtained from:  Apache Security Team
Security:       CVE-2006-3747

Number of ports [& non-ports] in this commit: 5

Showing files for just one port: www/apache21

show all files

hide all files


2 files found
ActionRevisionLinksFile
modify 1.186 View diff View revision /ports/head/www/apache21/Makefile
import 1.1 View revision /ports/head/www/apache21/files/patch-secfix-CVE-2006-3747
Login
User Login
Create account

Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD

This site
What is FreshPorts?
About the authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
bugzilla40*Apr 18
bugzilla40*Apr 18
bugzilla42*Apr 18
bugzilla42*Apr 18
bugzilla44*Apr 18
bugzilla44*Apr 18
curlApr 11
dbus-glibApr 11
libaudiofileApr 11
linux-f10-curlApr 11
linux-f10-dbus-glibApr 11
linux-f10-libaudiofileApr 11
linux-f10-nas-libsApr 11
linux-f10-openldapApr 11
mingw32-openssl*Apr 11

13 vulnerabilities affecting 18 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 24362
Broken 174
Deprecated 86
Ignore 526
Forbidden 4
Restricted 263
No CDROM 108
Vulnerable 29
Expired 8
Set to expire 71
Interactive 22
new 24 hours 3
new 48 hours6
new 7 days17
new fortnight37
new month146


Servers and bandwidth provided by
New York Internet, SuperNews, and RootBSD
Valid HTML, CSS, and RSS.
Copyright © 2000-2014 Dan Langille. All rights reserved.