CVS log for ports/www/apache13-modperl/files/Attic/patch-secfix-CAN-2005-3352
![[BACK]](/gifs/back.gif){kind=small}
Up to [FreeBSD] / ports / www / apache13-modperl / files
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
Revision 1.2
Tue Jul 18 08:19:53 2006 UTC (5 years, 6 months ago) by clement
Branches: MAIN
CVS tags: HEAD
FILE REMOVED
Changes since revision 1.1: +0 -0 lines
- update apache to 1.3.36 - bump HARD_SERVER_LIMIT to 2048 - drop broken WITH*_EXPAT support. we always depend on expat from ports (based on [1]) PR: ports/81183 [1] Submitted by: Martin Nilsson <martin@svenskabutiker.se>
Revision 1.1: download - view: text, markup, annotated - select for diffs
Mon Dec 12 20:31:52 2005 UTC (6 years, 1 month ago) by clement
Branches: MAIN
CVS tags: RELEASE_6_1_0, RELEASE_5_5_0
SECURITY: CVE-2005-3352 (cve.mitre.org) mod_imap: Escape untrusted referer header before outputting in HTML to avoid potential cross-site scripting. Change also made to ap_escape_html so we escape quotes. Reported by JPCERT. [Mark Cox] Reported by: simon