pkgsrc-changes: CVS commit: pkgsrc/www/apache

Subject: CVS commit: pkgsrc/www/apache
To: None <pkgsrc-changes@netbsd.org>
From: Johnny C. Lam <jlam@netbsd.org>
List: pkgsrc-changes
Date: 10/17/2001 22:17:01
Module Name:	pkgsrc
Committed By:	jlam
Date:		Wed Oct 17 19:17:01 UTC 2001

Modified Files:
	pkgsrc/www/apache: Makefile distinfo
	pkgsrc/www/apache/files: config.layout
	pkgsrc/www/apache/patches: patch-aa patch-ae patch-af patch-aj
	pkgsrc/www/apache/pkg: PLIST

Log Message:
Update apache to 1.3.22.  Relevant changes from version 1.3.20 include
using the pkgsrc expat library instead of the builtin one (this is to
avoid conflicts between expat libraries when an expat XML parser is loaded
by either mod_perl or mod_php), and:

  Security vulnerabilities

     * A vulnerability was found in the split-logfile support program. A
       request with a specially crafted Host: header could allow any file
       with a .log extension on the system to be written to.
     * A vulnerability was found when Multiviews are used to negotiate
       the directory index. In some configurations, requesting a URI with
       a QUERY_STRING of M=D could return a directory listing rather than
       the expected index page.

  General bug fixes and improvements

     * Bug fixes
     * The supplied icons are now also distributed in PNG format
     * New directives have been added to the mod_usertrack module, The
       first, CookieDomain, can be used to customise the Domain
       attribute.
     * A new directive, AcceptMutex, allows run-time configuration of the
       mutex type used for accept serialization.
     * mod_auth has been enhanced to allow access to a document to be
       controlled based on the owner of the file being served.
     * A new directive, AcceptFilter, has been added to control BSD
       accept filters at run-time. The functionality can postpone the
       requirement for a child process to handle a new connection until
       an HTTP request has arrived, therefore increasing the number of
       connections that a given number of child processes can handle


To generate a diff of this commit:
cvs rdiff -r1.77 -r1.78 pkgsrc/www/apache/Makefile
cvs rdiff -r1.6 -r1.7 pkgsrc/www/apache/distinfo
cvs rdiff -r1.2 -r1.3 pkgsrc/www/apache/files/config.layout
cvs rdiff -r1.14 -r1.15 pkgsrc/www/apache/patches/patch-aa
cvs rdiff -r1.5 -r1.6 pkgsrc/www/apache/patches/patch-ae
cvs rdiff -r1.7 -r1.8 pkgsrc/www/apache/patches/patch-af
cvs rdiff -r1.6 -r1.7 pkgsrc/www/apache/patches/patch-aj
cvs rdiff -r1.22 -r1.23 pkgsrc/www/apache/pkg/PLIST

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.