Number of commits found: 29

- update to 2.4.12

- change MPM backend from static to dynamic,
  but keep mpm_prefork for compatiblity with e.g. php modules
- install dedicated MPM load file in case httpd was build with modular MPM
  (modules.d/000_mpm_prefork_fallback.conf)
- disable SSLv3 and SSLv2 fallback in sample httpd-ssl-conf
- use @sample macro instead EXAMPLESDIR
- add some SSLCipherSuite examples for OpenSSL >= 1.0.x
- add libressl support [1]
- add pkg-install script (to handle new modular MPM build)
- build now most all modules, so users using packages don't have
  to run a custom build for missing modules
- fix suexec mode

PR:		196139 [1]
MFH:		2015Q1

- make QA script happy and RMDIR empty folder below $PORTDOCS
  the script complans on them even PORTDOCS=* is set
- do not slence INSTALL commands

apache24

- remove check if apr is build with threads
- bump PORTREVISION
- adopt new pkg-plist @dir

@with hat apache@

Remove unused LIBTOOLFILES

- adjust default modules, changed during the last revisions
  + SESSION_DBD
  + SLOTMEM_SHM (e.g neeed for mod_ajp)
  - CERN_META

- Use OPTION desc. from modules/config.m4 to match upstream
- bump PORTREVISION

with hat apache@

MFH:		2014Q3

- security update to release 2.4.10

- add OPTION for new mod_authnz_fcgi module

- s/libluajit.so/libluajit-5.1.so/ (there is no libluajit.so)

- backport for mod_lua: Don't quote values in cookies
   Make IE happy again [#56734]
   http://svn.apache.org/viewvc?view=revision&revision=1611744

- disable sanity check on demand [1]

Release Notes:
 http://www.apache.org/dist/httpd/CHANGES_2.4.10

PR:		191398 [1]
Submitted by:	Robert Schulze <rs@bytecamp.net>
MFH:		2014Q3
Security:	4364e1f1-0f44-11e4-b090-20cf30e32f6d
		CVE-2014-0117
		CVE-2014-3523
		CVE-2014-0226
		CVE-2014-0118
		CVE-2014-0231

Use modern LIB_DEPENDS on non default options

Submitted by:	ohauer

- revert conflict (apache22 has MPM sub ports)

- strip
- remove obsolete apache-*-2.2.* conflict
- add modules.d to EXAMPLESDIR
- always install DOC (remove Makefile hack)
- bump PORREVISION
- sort pkg-plist

- fix build with lua51 / lua52
- strip trailing white space
- no PORTREVISION bump (LUA is not a default OPTION)

Lua build issue reported on apache@ and lua@
 by Peter Olsson and Jason Hellenthal

- fix LIB_DEPENDS (after adding libtool:keepla to devel/apr1)
- bump PORTREVISION

Submitted by:	David Cecchin <dcecchin@gmail.com>

Add CPE information.

With hat:	ports-secteam

- /USE_AUTOTOOLS=libtool/USES=libtool/

with hat apache@

Replace lang/lua with the new lang/lua51

lang/lua51 is working the same way lang/lua52, chase ports using lua 5.1
Make the default lua lua52
Make all lua ports using USES=lua

Approved by:	portmgr (implicit)

The FreeBSD x11@ and graphics team proudly presents
a zeising, kwm production, with help from dumbbell, bdrewery:

NEW XORG ON FREEBSD 9-STABLE AND 10-STABLE

This update switches over to use the new xorg stack by default on FreeBSD 9
and 10 stable, on osversions where vt(9) is available.
It is still possible to use the old stack by specifying WITHOUT_NEW_XORG in
/etc/make.conf .
FreeBSD 8-STABLE and released versions of FreeBSD still use
the old version.
A package repository with binary packages for new xorg will
be available soon.

This patch also contains updates of libxcb and related ports, pixman, as well

(Only the first 15 lines of the commit message are shown above )

- mod_authn_socache.c: fix creation of default socache_instance.
- add Note how the OpenSSL version used to build httpd is found (apr-1-config)

Upstream r1576233 commit message
================================
In pre_config, default socache_provider is created, but socache_instance
initialization is missing. This leads to crash on startup if default
socache_provider is used (AuthnCacheSOCache is not called) and
AuthnCacheEnable or AuthnCacheProvideFor is used.

Submitted by:	Michael Bennett (per PM)
Obtained from:	http://svn.apache.org/viewvc?view=revision&revision=1576233

- update to 2.4.9
- enforcing use libapr-1.so.5 (apr-1.5.0 instead apr-1.4.8)

Changes with Apache 2.4.9

  *) mod_ssl: Work around a bug in some older versions of OpenSSL that
     would cause a crash in SSL_get_certificate for servers where the
     certificate hadn't been sent. [Stephen Henson]

   *) mod_lua: Add a fixups hook that checks if the original request is intended
      for LuaMapHandler. This fixes a bug where FallbackResource invalidates the
      LuaMapHandler directive in certain cases by changing the URI before the
map
      handler code executes [Daniel Gruno, Daniel Ferradal <dferradal gmail
com>].

Changes with Apache 2.4.8

(Only the first 15 lines of the commit message are shown above )

- add patch for apache bug-id 55306
- bump PORTREVISION

There is an subversion update on the way and we will see the new
subversion before apache24-2.4.7 so adopt the mod_dav patches
from upstrem.

  - add new directory for modules (APACHEETCDIR/modules.d)

    New modules can be registered here with a simple
    file that contains the LoadModule directives.
    Additonal Maintaines can write instructions to the
    conf file and keep pkg-message short.
    As bonus the config file can be installed like every
    other config file with a .sample extention so modules
    are not disabled during pkg upgrades.

    Module config files should begin with three digits
    followed by '_' e.g. 100_php5.conf.
    The load order can be controlled via the three digits.

    Please wait some time before adopting the new directory
    so users have time to update and adjust axisting configs

- no revision bump, devel/apr was updated and we will see
  apache 2.2.7 in the next days (I only want to have the
  modules.d directory adopted)

  - support staging
  - partitial adopt new ${opt}_ notation

Add NO_STAGE all over the place in preparation for the staging support (cat:
www)

- convert to the new perl5 framework
- convert USE_GMAKE to Uses

Approved by:	portmgr (bapt@, blanket)

Introduce variable ICONV_PREFIX at Mk/Uses/iconv.mk. The default for
pre 100043 is ${LOCALBASE} and /usr otherwise. Convert all ports to
new variable usage.

Approved by:	portmgr (bapt, implicit)

- Remove MAKE_JOBS_SAFE variable

Approved by:	portmgr (bdrewery)

- update to apache24-2.4.6
 - new modules: mod_cache_socache, mod_macro and mod_proxy_wstunnel

- add enty to vuxml

SECURITY: CVE-2013-1896 (cve.mitre.org)
 mod_dav: Sending a MERGE request against a URI handled by mod_dav_svn with
 the source href (sent as part of the request body as XML) pointing to a
 URI that is not configured for DAV will trigger a segfault.

SECURITY: CVE-2013-2249 (cve.mitre.org)
 mod_session_dbd: Make sure that dirty flag is respected when saving
 sessions, and ensure the session ID is changed each time the session
 changes. This changes the format of the updatesession SQL statement.
 Existing configurations must be changed.

Changelog:
http://www.apache.org/dist/httpd/CHANGES_2.4.6

with hat apache@

Security:	ca4d63fb-f15c-11e2-b183-20cf30e32f6d

- enable NSS crypto driver
- use service(8) in apachectl where it makes sence
- bump PORTREVISION

- Convert USE_ICONV=yes to USES=iconv
- Change USE_GNOME=pkgconfig|gnomehack to USES=pathfix|pkgconfig and
  USE_GETTEXT=yes to USES=gettext while here

- fix build on sparc64 machine

Feature safe: yes

with hat apache@

PR:		177693
Submitted by:	Michael Moll <kvedulv@kvedulv.de>
Obtained from:	http://svn.apache.org/viewvc?view=revision&revision=1470183

- new port www/apache24

The Apache HTTP Server Project is an effort to develop and maintain an
open-source HTTP server for various modern desktop and server operating
systems, such as UNIX and Windows NT. The goal of this project is to
provide a secure, efficient and extensible server which provides HTTP
services in sync with the current HTTP standards.
The 2.x branch of Apache Web Server includes several improvements like
threading, use of APR, native IPv6 and SSL support, and many more.

WWW: http://httpd.apache.org/

Note:
 Since apache24 does not enable every module by default in httpd.conf the
 list of modules to build was preselected to match build param

(Only the first 15 lines of the commit message are shown above )

Number of commits found: 29

11 vulnerabilities affecting 36 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities