CVS log for ports/www/apache22/files/Attic/patch-secfix-CVE-2006-3747
![[BACK]](/gifs/back.gif){kind=small}
Up to [FreeBSD] / ports / www / apache22 / files
Request diff between arbitrary revisions
Keyword substitution: kv
Default branch: MAIN
Revision 1.2
Sat Aug 5 20:37:23 2006 UTC (5 years, 6 months ago) by clement
Branches: MAIN
CVS tags: HEAD
FILE REMOVED
Changes since revision 1.1: +0 -0 lines
- Update to 2.2.3 - Update apr_dbd to latest version [1] - Add forgotten mod_authn_alias [2] Spotted by: Jim Riggs <freebsd-lists@jimandlissa.com> [1] Alexander Wittig <alexander@wittig.name> [2
Revision 1.1: download - view: text, markup, annotated - select for diffs
Thu Jul 27 20:26:29 2006 UTC (5 years, 6 months ago) by clement
Branches: MAIN
- Fix security issue in mod_rewrite. All people using mod_rewrite are strongly encouraged to update. An off-by-one flaw exists in the Rewrite module, mod_rewrite. Depending on the manner in which Apache httpd was compiled, this software defect may result in a vulnerability which, in combination with certain types of Rewrite rules in the web server configuration files, could be triggered remotely. For vulnerable builds, the nature of the vulnerability can be denial of service (crashing of web server processes) or potentially allow arbitrary code execution. This issue has been rated as having important security impact by the Apache HTTP Server Security Team Updates to latest versions will follow soon. Notified by: so@ (simon) Obtained from: Apache Security Team Security: CVE-2006-3747