httpd

Checkout Tools
  • last updated 7 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates

Changeset 683809 is being indexed.

promote approved backport
Merge r683373 from trunk:

* Move nonce field inside the html form.

PR: 45578

Submitted by: rpluem

Reviewed by: rpluem, covener, jorton

* Vote

propose another backport

promote approved backport

mod_dav_fs: Retrieve minimal system information about directory

entries when walking a DAV fs, resolving a performance degradation on

Windows.

PR: 45464

vote, propose

remove proposal accidentally added twice
vote

* Add proposal

* Move nonce field inside the html form.

PR: 45578

Updated

submitted by: Lucien GENTIS <lucien.gentis lorraine.iufm.fr>

Updated

submitted by: Lucien GENTIS <lucien.gentis lorraine.iufm.fr>

* server/util_cookies.c (ap_cookie_write2): Add missing sentinel in

apr_pstrcat call.

* modules/mappers/mod_rewrite.c (cmd_rewritelock): Add missing

sentinel.

* modules/ssl/ssl_engine_io.c (ssl_io_input_getline): Document

interface.

(ssl_io_filter_input): For GETLINE mode, pull lines directly from

the char_buffer if possible, to avoid unnecessarily copying the

entire buffer once per invocation.

* modules/ssl/ssl_engine_io.c (char_buffer_read): Use memmove in place

of memcpy since the buffers can overlap; add explanatory comment.

PR: 45444

Add CVE-2008-2939

Relax checks for OCSP responder URIs:

* modules/ssl/ssl_engine_ocsp.c (determine_responder_uri): Allow

NULL path; use default port for given schem.

* modules/ssl/ssl_util_ocsp.c (serialize_request): Use / if no path

specified.

Submitted by: Kaspar Brand <asfbugz velox.ch>

PR: 45522

add proposal
* Add a proposal

Merge r682868 from trunk:

* Prevent XSS attacks when using wildcards in the path of the FTP URL.

Discovered by Marc Bevand of Rapid7.

CVE: CVE-2008-2939

Submitted by: rpluem

Reviewed by: rpluem, mjc, jim, jorton

Merge r682868 from trunk:

* Prevent XSS attacks when using wildcards in the path of the FTP URL.

Discovered by Marc Bevand of Rapid7.

CVE: CVE-2008-2939

Submitted by: rpluem

Reviewed by: rpluem, mjc, jim, jorton

* Prevent XSS attacks when using wildcards in the path of the FTP URL

(CVE-2008-2939). Discovered by Marc Bevand of Rapid7.

Make list_hooks.pl multi-line aware, and swallow up the

required lines to obtain args, etc...

picking nits - de-tab

* Vote

Add mod_cgi-matching src change from jimjag as suggested by rpluem

Simplyfy codepath. Don't treat "" as special, just

plug along. This matches the codepath in mod_cgi.c

New Turkish translations

Translated by: Nilgün Belma Bugüner <nilgun belgeler.org>

Reviewed by: Orhan Berent <berent belgeler.org>

    • ?
    /httpd/branches/2.0.x/docs/manual/new_features_2_0.xml.tr