OpenSDE
/
package-nopast
3
0
Fork 0
Code Issues 9 Projects 1 Releases Activity
OpenSDE Packages Database (without history before r20070)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3645 Commits
49 Branches
0 Tags
34 MiB
Tree: 00fbb1a46c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '00fbb1a46c'
${ noResults }
package-nopast/network/apache/apache.desc

43 lines
1.6 KiB
Raw Normal View History

* relocated current package database to the trunk of the package sub-project git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f
18 years ago
Removed trailing spaces massively, hoping to not break anything. Copyright notes not renewed
17 years ago
* relocated current package database to the trunk of the package sub-project git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f
18 years ago
Updated apache (2.2.4 -> 2.2.8) : SECURITY - HIGH CVE-2006-5752 (Medium) : Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving charsets with browsers that perform "charset detection" when the content-type is not specified. CVE-2007-1862 (Medium) : The recall_headers function in mod_mem_cache in Apache 2.2.4 does not properly copy all levels of header data, which can cause Apache to return HTTP headers containing previously used data, which could be used by remote attackers to obtain potentially sensitive information. CVE-2007-1863 (Medium) : cache_util.c in the mod_cache module in Apache HTTP Server (httpd), when caching is enabled and a threaded Multi-Processing Module (MPM) is used, allows remote attackers to cause a denial of service (child processing handler crash) via a request with the (1) s-maxage, (2) max-age, (3) min-fresh, or (4) max-stale Cache-Control headers without a value. CVE-2007-3304 (Medium) : Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the worker_score and process_score arrays to reference an arbitrary process ID, which is sent a SIGUSR1 signal from the master process, aka "SIGUSR1 killer." CVE-2007-3847 (Medium) : The date handling code in modules/proxy/proxy_util.c (mod_proxy) in Apache 2.3.0, when using a threaded MPM, allows remote origin servers to cause a denial of service (caching forward proxy process crash) via crafted date headers that trigger a buffer over-read. CVE-2007-5000 (Medium) : Cross-site scripting (XSS) vulnerability in the (1) mod_imap module in the Apache HTTP Server 1.3.0 through 1.3.39 and 2.0.35 through 2.0.61 and the (2) mod_imagemap module in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CVE-2007-6388 (Medium) : Cross-site scripting (XSS) vulnerability in mod_status in the Apache HTTP Server 2.2.0 through 2.2.6, 2.0.35 through 2.0.61, and 1.3.2 through 1.3.39, when the server-status page is enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CVE-2007-6421 (Low) : Cross-site scripting (XSS) vulnerability in balancer-manager in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) ss, (2) wr, or (3) rr parameters, or (4) the URL. CVE-2007-6422 (Medium) : The balancer_handler function in mod_proxy_balancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service (child process crash) via an invalid bb variable. CVE-2008-0005 (Medium) : mod_proxy_ftp in Apache 2.2.x before 2.2.7-dev, 2.0.x before 2.0.62-dev, and 1.3.x before 1.3.40-dev does not define a charset, which allows remote attackers to conduct cross-site scripting (XSS) attacks using UTF-7 encoding.
17 years ago
* relocated current package database to the trunk of the package sub-project git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f
18 years ago
Removed trailing spaces massively, hoping to not break anything. Copyright notes not renewed
17 years ago
* relocated current package database to the trunk of the package sub-project git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f
18 years ago
Removed trailing spaces massively, hoping to not break anything. Copyright notes not renewed
17 years ago
* relocated current package database to the trunk of the package sub-project git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f
18 years ago
apache: Updated (2.2.8 -> 2.2.9) : SECURITY - MEDIUM CVE-2008-2939 - (Medium) : Cross-site scripting (XSS) vulnerability in proxy_ftp.c in the mod_proxy_ftp module in Apache 2.0.63 and earlier, and mod_proxy_ftp.c in the mod_proxy_ftp module in Apache 2.2.9 and earlier 2.2 versions, allows remote attackers to inject arbitrary web script or HTML via wildcards in a pathname in an FTP URI.
16 years ago
* relocated current package database to the trunk of the package sub-project git-svn-id: svn://svn.opensde.net/opensde/package/trunk@20072 10447126-35f2-4685-b0cf-6dd780d3921f
18 years ago
apache: changed download location
16 years ago
  1. [COPY] --- SDE-COPYRIGHT-NOTE-BEGIN ---
  2. [COPY] This copyright note is auto-generated by ./scripts/Create-CopyPatch.
  3. [COPY]
  4. [COPY] Filename: package/.../apache/apache.desc
  5. [COPY] Copyright (C) 2006 - 2008 The OpenSDE Project
  6. [COPY] Copyright (C) 2004 - 2006 The T2 SDE Project
  7. [COPY] Copyright (C) 1998 - 2004 Clifford Wolf
  8. [COPY]
  9. [COPY] More information can be found in the files COPYING and README.
  10. [COPY]
  11. [COPY] This program is free software; you can redistribute it and/or modify
  12. [COPY] it under the terms of the GNU General Public License as published by
  13. [COPY] the Free Software Foundation; version 2 of the License. A copy of the
  14. [COPY] GNU General Public License can be found in the file COPYING.
  15. [COPY] --- SDE-COPYRIGHT-NOTE-END ---
  17. [I] The HTTP web server
  19. [T] Apache has been the most popular web server on the Internet since April
  20. [T] of 1996. The May 2002 Netcraft Web Server Survey found that 56% of the
  21. [T] web sites on the Internet are using Apache, thus making it more widely
  22. [T] used than all other web servers combined.
  23. [T]
  24. [T] The Apache HTTP Server Project is an effort to develop and maintain an
  25. [T] open-source HTTP server for various modern desktop and server operating
  26. [T] systems, such as UNIX and Windows NT. The goal of this project is to
  27. [T] provide a secure, efficient and extensible server which provides HTTP
  28. [T] services in sync with the current HTTP standards.
  30. [U] http://www.apache.org/
  32. [A] Apache Software Foundation
  33. [M] The OpenSDE Community <list@opensde.org>
  35. [C] extra/server
  36. [F] JAIL
  38. [L] APL
  39. [S] Stable
  40. [V] 2.2.9
  41. [P] X -----5---9 150.000
  43. [D] 4129287121 httpd-2.2.9.tar.gz http://archive.apache.org/dist/httpd/