httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From br...@hyperreal.org
Subject cvs commit: apache-1.3 STATUS
Date Mon, 20 Jul 1998 01:43:43 GMT
brian       98/07/19 18:43:43

  Modified:    .        STATUS
  Log:
  Remove the bug report about Win95 and access files, add Manoj's security fix.
  
  Revision  Changes    Path
  1.442     +6 -5      apache-1.3/STATUS
  
  Index: STATUS
  ===================================================================
  RCS file: /export/home/cvs/apache-1.3/STATUS,v
  retrieving revision 1.441
  retrieving revision 1.442
  diff -u -r1.441 -r1.442
  --- STATUS	1998/07/18 07:28:25	1.441
  +++ STATUS	1998/07/20 01:43:42	1.442
  @@ -14,11 +14,6 @@
   
   WIN32 1.3.1 RELEASE SHOWSTOPPERS:
   
  -    * Win95: when authentication is required for directory /foobar/, direct 
  -      access to /foobar/bletch is permitted.  PR #2145
  -
  -	UPDATE: may be false alarm, probably shouldn't hold 1.3.1.
  -
       * can not build tarball until someone verifies the final code
         will build on win32.  Want to avoid changes-after-tag that 
         happened with 1.3.0.
  @@ -29,6 +24,12 @@
   	virtualhosting.  (If it exists already I can't find it easily.)
   
   Available Patches:
  +
  +    * [PATCH] PR #2355 and very minor security hole fix 
  +      Message-ID: <19980717183717.A16507@raleigh.ibm.com>
  +      With this patch, Apache uses ap_sub_req_lookup_file to get the 
  +      filename specified in a "file=" parameter (for example, in an 
  +      flastmod or fsize call).
   
       * "[PATCH] Link DSO modules against possible libraries from $(LIBS)"
         Message-ID: <19980711133804.A2439@engelschall.com>
  
  
  

Mime
View raw message