FreshPorts -- The Place For Ports notbug Mon, 28 May 2012 3:24 AM BST
non port: www/apache22/distinfo
CVSWeb

Number of commits found: 23

Wed, 1 Feb 2012
[ 18:56 jgh ] Original commit 
1.295 www/apache22/Makefile
1.16 www/apache22/Makefile.doc
1.87 www/apache22/distinfo
1.26 www/apache22/files/patch-Makefile.in
1.4 www/apache22/files/patch-docs__conf__extra__httpd-ssl.conf.in
- Update to 2.2.22

Addresses:
* SECURITY: CVE-2011-3607 (cve.mitre.org)
Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP
Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif
module is enabled, allows local users to gain privileges via a .htaccess file
with a crafted SetEnvIf directive, in conjunction with a crafted HTTP request
header, leading to a heap-based buffer overflow.

* SECURITY: CVE-2012-0021 (cve.mitre.org)
The log_cookie function in mod_log_config.c in the mod_log_config module in the
Apache HTTP Server 2.2.17 through 2.2.21, when a threaded MPM is used, does not
properly handle a %{}C format string, which allows remote attackers to cause a
denial of service (daemon crash) via a cookie that lacks both a name and a
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Thu, 15 Sep 2011
[ 05:00 ohauer ] Original commit 
1.293 www/apache22/Makefile
1.86 www/apache22/distinfo
- update to version 2.2.21

Addresses:
* SECURITY: CVE-2011-3348 (cve.mitre.org)
 mod_proxy_ajp when combined with mod_proxy_balancer: Prevents
 unrecognized HTTP methods from marking ajp: balancer members
 in an error state, avoiding denial of service.

* SECURITY: CVE-2011-3192 (cve.mitre.org)
 core: Further fixes to the handling of byte-range requests to use
 less memory, to avoid denial of service. This patch includes fixes
 to the patch introduced in release 2.2.20 for protocol compliance,
 as well as the MaxRanges directive.

PR:             ports/160743
Submitted by:   Jason Helfman <jhelfman@experts-exchange.com>
Fri, 2 Sep 2011
[ 06:18 ade ] Original commit 
1.291 www/apache22/Makefile
1.85 www/apache22/distinfo
Emergency upgrade to 2.2.20 - CVE-2011-3192.  Any complaints, talk to me.

PR:             160381
Sun, 22 May 2011
[ 21:33 ohauer ] Original commit 
1.12 www/apache22-peruser-mpm/Makefile
1.289 www/apache22/Makefile
1.84 www/apache22/distinfo
- update to httpd-2.2.19

Changes with Apache 2.2.19

  *) Revert ABI breakage in 2.2.18 caused by the function signature change
     of ap_unescape_url_keep2f().  This release restores the signature from
     2.2.17 and prior, and introduces ap_unescape_url_keep2f_ex().
     [Eric Covener]

commit with hat apache@
Fri, 13 May 2011
[ 23:02 ohauer ] Original commit 
1.288 www/apache22/Makefile
1.83 www/apache22/distinfo
- update to version 2.2.18

Changes:
http://www.apache.org/dist/httpd/CHANGES_2.2.18

Changes with Apache 2.2.18

  *) Log an error for failures to read a chunk-size, and return 408 instead
     413 when this is due to a read timeout.  This change also fixes some cases
     of two error documents being sent in the response for the same scenario.
     [Eric Covener] PR49167

  *) core: Only log a 408 if it is no keepalive timeout. PR 39785
     [Ruediger Pluem,  Mark Montague <markmont umich.edu>]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Sat, 19 Mar 2011
[ 12:38 miwi ] Original commit 
1.4 astro/accrete/distinfo
1.6 astro/boinc-einsteinathome/distinfo
1.5 astro/boinc-milkyway/distinfo
1.9 astro/celestia/distinfo
1.4 astro/ephem/distinfo
1.2 astro/fowsr/distinfo
1.3 astro/gaia/distinfo
1.4 astro/gkrellmoon/distinfo
1.3 astro/gkrellmoon2/distinfo
1.4 astro/gkrellsun/distinfo

(Only the first 10 of 4601 ports in this commit are shown above. View all ports for this commit)
- Get Rid MD5 support
Wed, 20 Oct 2010
[ 21:04 pgollucci ] Original commit 
1.282 www/apache22/Makefile
1.81 www/apache22/distinfo
- Update to 2.2.17

**
* Note, no CVE affects the FREEBSD port.  devel/apr1 was updated to
* apr-util 1.3.10 on 2010/10/06 05:32:24.
**

Changes:        http://www.apache.org/dist/httpd/CHANGES_2.2
PR:             ports/151594
Submitted by:   Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
With Hat:       apache@

<ChangeLog>
  *) prefork MPM: Run cleanups for final request when process exits gracefully
     to work around a flaw in apr-util.  PR 43857.  [Tom Donovan]
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Mon, 26 Jul 2010
[ 01:28 kuriyama ] Original commit 
1.278 www/apache22/Makefile
1.80 www/apache22/distinfo
1.5 www/apache22/files/patch-support__apxs.in
- Upgrade to 2.2.16.

Security:       CVE-2010-1452 (mod_{cache,dev} remote DoS),
                CVE-2010-2068 (mod_{proxy_{ajp,http},reqtimeout} related on some
platforms)
Wed, 5 May 2010
[ 21:43 pgollucci ] Original commit 
1.252 www/apache22/Makefile
1.79 www/apache22/distinfo
1.4 www/apache22/files/patch-srclib-apr-buildconf
1.2 www/apache22/files/patch-srclib__apr__buildconf
1.95 www/apache22/pkg-plist
2/5: Update to httpd 2.2.15, default to using devel/apr instead of bundled apr

PR:             ports/146130
Approved by:    portmgr (pav)
Tested by:      -exp run (pav)
With Hat:       apache@
Wed, 9 Dec 2009
[ 23:48 pgollucci ] Original commit 
1.244 www/apache22/Makefile
1.78 www/apache22/distinfo
- Update to 2.2.14
- With hat apache@

Note: The 3 CVE's are a no-op for the FreeBSD port --

date: 2009/08/25 05:33:03;  author: kuriyama;  state: Exp;  lines: +0 -0
(Forced commit)

- 2.2.13 (acutally 2.2.12) includes fixes for several CVEs. [1]
  but in our ports tree, APR related ones (CVE-2009-0023,
  CVE-2009-1955, CVE-2009-1956) were already backported in 2.2.11_5.

References:     http://www.apache.org/dist/httpd/CHANGES_2.2.12 [1]

Changes:
(Only the first 15 lines of the commit message are shown above View all of this commit message)
Tue, 25 Aug 2009
[ 04:58 kuriyama ] Original commit 
1.241 www/apache22/Makefile
1.77 www/apache22/distinfo
1.2 www/apache22/files/patch-apr-fix-apr_xml-expat-attack
1.2 www/apache22/files/patch-apr-fix-brigade_vprintf_overflow
1.2 www/apache22/files/patch-apr-fix-strmatch-underflow
1.2 www/apache22/files/patch-libtool22
1.2 www/apache22/files/patch-server__mpm__prefork__prefork.c
1.3 www/apache22/files/patch-srclib-apr-buildconf
1.4 www/apache22/files/patch-srclib:apr:build:buildcheck.sh
- Upgrade to 2.2.13.

PR:             ports/137651
Submitted by:   Tsurutani Naoki <turutani@scphys.kyoto-u.ac.jp>
Mon, 15 Dec 2008
[ 22:05 clement ] Original commit 
1.227 www/apache22/Makefile
1.8 www/apache22/files/apache22.sh.in
1.76 www/apache22/distinfo
1.2 www/apache22/files/patch-CVE-2008-2939
1.5 www/apache22/files/patch-srclib:apr-util:build:dbm.m4
1.91 www/apache22/pkg-plist
- Update to 2.2.11
- Always depend on pcre from ports [1]
- Fix plist with LDAP/without apr-util DSO
- source envvars as late as possible [2]

Requested by:           ale
                        Eygene Ryabinkin <rea-fbsd at codelabs dot ru> [2]
PR:                     ports/127418 [2]
Mon, 23 Jun 2008
[ 21:11 clement ] Original commit 
1.218 www/apache22/Makefile
1.649 UPDATING
1.75 www/apache22/distinfo
1.5 www/apache22/files/patch-srclib:apr-util:Makefile.in
1.1 www/apache22/files/patch-srclib__arp-util__Makefile.in
1.87 www/apache22/pkg-plist
 - Update to 2.2.9
 - Add a note to UPDATING about the forced build of subversion
   because of apr/apu bumped version.
Sun, 20 Jan 2008
[ 11:29 clement ] Original commit 
1.217 www/apache22/Makefile
1.12 www/apache22/Makefile.doc
1.26 www/apache22/Makefile.modules
1.576 UPDATING
1.74 www/apache22/distinfo
1.2 www/apache22/files/patch-docs_conf_httpd.conf.in
1.2 www/apache22/files/patch-srclib-apr-network_io-unix-multicast.c
- Update to 2.2.8
- Update documentation
- Use BDB from bsd.databases.mk instead of homebrew [1]

PR:             ports/119711 [1]
Submitted by:   mm [1]
Sun, 9 Sep 2007
[ 14:55 clement ] Original commit 
1.207 www/apache22/Makefile
1.4 www/apache22/files/apache22.sh.in
1.73 www/apache22/distinfo
1.20 www/apache22/files/patch-Makefile.in
1.2 www/apache22/files/patch-docs_conf_extra_httpd-ssl.conf.in
1.82 www/apache22/pkg-plist
- Update to 2.2.6
- Fix restart when profiles are used [1]

Submitted by:   Jarrod Sayers <jarrod at netleader dot com dot au>
Sat, 13 Jan 2007
[ 12:13 clement ] Original commit 
1.201 www/apache22/Makefile
1.20 www/apache22/Makefile.modules
1.2 www/apache22/files/apache22.sh.in
1.72 www/apache22/distinfo
1.79 www/apache22/pkg-plist
- Update to 2.2.4
- Add dumpio module
- Fix rcorder [1]

PR:             ports/106429 [1]
Submitted by:   Dmitry Pryanishnikov <dmitry@atlantis.dp.ua> [1]
Sun, 5 Nov 2006
[ 10:49 clement ] Original commit 
1.199 www/apache22/Makefile
1.10 www/apache22/Makefile.doc
1.19 www/apache22/Makefile.modules
1.71 www/apache22/distinfo
1.1 www/apache22/files/patch-mpm-itk-20061030-01
- Update MySQL apr_dbd to rev 57
- Add support for itk mpm
- Update doc [1]

Reported by:    Volodymyr Kostyrko <arcade@synergetica.dn.ua> [1]
Mon, 7 Aug 2006
[ 17:10 clement ] Original commit 
1.197 www/apache22/Makefile
1.70 www/apache22/distinfo
- Fix apr_dbd_mysql stuff.

Pointyhat to:   clement
Spotted by:     Sean McNeil <sean@mcneil.com>
Sat, 5 Aug 2006
[ 20:37 clement ] Original commit 
1.196 www/apache22/Makefile
1.15 www/apache22/Makefile.modules
1.69 www/apache22/distinfo
1.2 www/apache22/files/patch-secfix-CVE-2006-3747
1.77 www/apache22/pkg-plist
- Update to 2.2.3
- Update apr_dbd to latest version [1]
- Add forgotten mod_authn_alias [2]

Spotted by:     Jim Riggs <freebsd-lists@jimandlissa.com> [1]
                Alexander Wittig <alexander@wittig.name> [2
Mon, 1 May 2006
[ 09:07 clement ] Original commit 
1.192 www/apache22/Makefile
1.14 www/apache22/Makefile.modules
1.68 www/apache22/distinfo
1.3 www/apache22/files/patch-secfix-CAN-2005-3352
1.2 www/apache22/files/patch-secfix-CAN-2005-3357
1.4 www/apache22/files/patch-srclib:apr:threadproc:unix:procsup.c
1.76 www/apache22/pkg-plist
- Update to 2.2.2
- Enable mod_version by default
Sun, 25 Dec 2005
[ 18:58 clement ] Original commit 
1.67 www/apache22/distinfo
- remove useless powerlogo.gif
Tue, 13 Dec 2005
[ 22:26 clement ] Original commit 
1.182 www/apache22/Makefile
1.8 www/apache22/Makefile.doc
1.10 www/apache22/Makefile.modules
1.10 www/apache22/files/apache.sh
1.66 www/apache22/distinfo
1.1 www/apache22/files/no-accf.conf
1.3 www/apache22/files/patch-support:envvars-std.in
1.72 www/apache22/pkg-plist
- Fix envvars.d [1]
- Add apache22_http_accept_enable to load accf_http kernel module [2]
  Additionnally, if it's not defined, we drop accept filter support
- Drop obsolete apache22ssl_enable rc.conf option
- Sync apache22.sh behavior with apachectl
  Add graceful and graceful-stop targets
- Rework categories (add CACHE_MODULES)
- Add support for apr_dbd: MySQL, PostgrSQL and SQLite3 backends are supported
  It adds mod_auth_dbd and mod_dbd automatically

more fixes to come soon...

PR:             ports/90309 [1],
                ports/90103 [2]
Submitted by:   Simun Mikecin <sime@data.home.hr> [1],
                Melvyn Sopacua <melvyn@melvyn.homeunix.net> [2]
Sat, 3 Dec 2005
[ 22:02 clement ] Original commit 
1.1254 www/Makefile
1.177 www/apache22/Makefile
1.6 www/apache22/Makefile.doc
1.9 www/apache22/files/apache.sh
1.65 www/apache22/distinfo
1.19 www/apache22/files/patch-Makefile.in
1.7 www/apache22/files/patch-config.layout
1.2 www/apache22/pkg-message
1.68 www/apache22/pkg-plist
- Add apache 2.2.0
  It's a temporary layout, I need more time to find the best.
  note that ${PREFIX}/www/(data|errors|cgi)(-dist) disappeared in favor of
  ${PREFIX}/www/apache22

Number of commits found: 23

Login
User Login
Create account

Servers and bandwidth provided by
New York Internet
SuperNews

Search
Enter Keywords:
 
more...

Latest Vulnerabilities
haproxyMay 24
foswikiMay 21
inspircd*May 21
inspircd12*May 21
sympaMay 21
sympa5May 21
libxml2May 18
pidgin-otrMay 16
sudoMay 16
chromiumMay 15
chromiumMay 15
pivotx*May 14
socatMay 14
libpurpleMay 12
php5May 12

12 vulnerabilities affecting 17 ports have been reported in the past 14 days

* - modified, not new

All vulnerabilities


Ports
Home
Categories
Deleted ports
Sanity Test Failures
Newsfeeds


Statistics
Graphs
NEW Graphs (Javascript)
Traffic

Calculated hourly:
Port count 23676
Broken 193
Deprecated 147
Ignore 737
Forbidden 3
Restricted 328
No CDROM 110
Vulnerable 0
Expired 44
Set to expire 188
Interactive 54
new 24 hours 4
new 48 hours6
new 7 days60
new fortnight184
new month252

This site
What is FreshPorts?
About the Authors
FAQ
How big is it?
The latest upgrade!
Privacy
Forums
Blog
Contact

Servers and bandwidth provided by
New York Internet
SuperNews
Valid HTML, CSS, and RSS.
Copyright © 2000-2012 DVL Software Limited. All rights reserved.
This page created in 1.659 seconds.