httpd-cvs mailing list archives

Site index · List index

Message view	« Date » · « Thread »
Top	« Date » · « Thread »
From	erikab...@apache.org
Subject	cvs commit: httpd-site/xdocs download.xml
Date	Tue, 28 Oct 2003 09:03:45 GMT
erikabele 2003/10/28 01:03:45 Modified: docs download.html index.html xdocs download.xml Log: Commit transformations and fix two issues in download.xml Revision Changes Path 1.39 +18 -9 httpd-site/docs/download.html Index: download.html =================================================================== RCS file: /home/cvs/httpd-site/docs/download.html,v retrieving revision 1.38 retrieving revision 1.39 diff -u -r1.38 -r1.39 --- download.html 15 Sep 2003 15:08:36 -0000 1.38 +++ download.html 28 Oct 2003 09:03:45 -0000 1.39 @@ -132,24 +132,33 @@ <ul> <li>Unix Source: -<a href="[preferred]/httpd/httpd-2.0.47.tar.gz">httpd-2.0.47.tar.gz</a> -[<a href="http://www.apache.org/dist/httpd/httpd-2.0.47.tar.gz.asc">PGP</a>] -[<a href="http://www.apache.org/dist/httpd/httpd-2.0.47.tar.gz.md5">MD5</a>]</li> +<a href="[preferred]/httpd/httpd-2.0.48.tar.gz">httpd-2.0.48.tar.gz</a> +[<a href="http://www.apache.org/dist/httpd/httpd-2.0.48.tar.gz.asc">PGP</a>] +[<a href="http://www.apache.org/dist/httpd/httpd-2.0.48.tar.gz.md5">MD5</a>]</li> <li>Unix Source: -<a href="[preferred]/httpd/httpd-2.0.47.tar.Z">httpd-2.0.47.tar.Z</a> -[<a href="http://www.apache.org/dist/httpd/httpd-2.0.47.tar.Z.asc">PGP</a>] -[<a href="http://www.apache.org/dist/httpd/httpd-2.0.47.tar.Z.md5">MD5</a>]</li> +<a href="[preferred]/httpd/httpd-2.0.48.tar.Z">httpd-2.0.48.tar.Z</a> +[<a href="http://www.apache.org/dist/httpd/httpd-2.0.48.tar.Z.asc">PGP</a>] +[<a href="http://www.apache.org/dist/httpd/httpd-2.0.48.tar.Z.md5">MD5</a>]</li> -<li>Win32 Source: +<li>Win32 Source: +Not available +<!-- <a href="[preferred]/httpd/httpd-2.0.47-win32-src.zip">httpd-2.0.47-win32-src.zip</a> [<a href="http://www.apache.org/dist/httpd/httpd-2.0.47-win32-src.zip.asc">PGP</a>] -[<a href="http://www.apache.org/dist/httpd/httpd-2.0.47-win32-src.zip.md5">MD5</a>]</li> +[<a href="http://www.apache.org/dist/httpd/httpd-2.0.47-win32-src.zip.md5">MD5</a>] +--> +</li> <li>Win32 Binary (MSI Installer): +Not available +<!-- <a href="[preferred]/httpd/binaries/win32/apache_2.0.47-win32-x86-no_ssl.msi">apache_2.0.47-win32-x86-no_ssl.msi</a> [<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_2.0.47-win32-x86-no_ssl.msi.asc">PGP</a>] -[<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_2.0.47-win32-x86-no_ssl.msi.md5">MD5</a>]</li> +[<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_2.0.47-win32-x86-no_ssl.msi.md5">MD5</a>] +--> +</li> + <li><a href="[preferred]/httpd/">Other files</a></li> 1.63 +12 -21 httpd-site/docs/index.html Index: index.html =================================================================== RCS file: /home/cvs/httpd-site/docs/index.html,v retrieving revision 1.62 retrieving revision 1.63 diff -u -r1.62 -r1.63 --- index.html 15 Sep 2003 15:08:36 -0000 1.62 +++ index.html 28 Oct 2003 09:03:45 -0000 1.63 @@ -70,9 +70,9 @@ efficient and extensible server that provides HTTP services in sync with the current HTTP standards.</p> <p>Apache has been the most popular web server on the Internet since -April of 1996. The July 2003 <a href="http://news.netcraft.com/">Netcraft Web Server Survey</a> -found that 63% of the web sites on the Internet are using Apache, thus -making it more widely used than all other web servers combined.</p> +April of 1996. The October 2003 <a href="http://news.netcraft.com/">Netcraft Web Server Survey</a> +found that more than 64% of the web sites on the Internet are using Apache, +thus making it more widely used than all other web servers combined.</p> <p>The Apache HTTP Server is a project of the <a href="http://www.apache.org/">Apache Software Foundation</a>.</p> </blockquote> </td></tr> @@ -97,30 +97,21 @@ <table border="0" cellspacing="0" cellpadding="2" width="100%"> <tr><td bgcolor="#525D76"> <font color="#ffffff" face="arial,helvetica,sanserif"> - <a name="2.0.47"><strong>Apache 2.0.47 Released</strong></a> + <a name="2.0.48"><strong>Apache 2.0.48 Released</strong></a> </font> </td></tr> <tr><td> <blockquote> <p>The Apache HTTP Server Project is proud to <a href="http://www.apache.org/dist/httpd/Announcement2.html">announce</a> the -tenth public release of Apache 2.0.</p> -<p>This version of Apache is principally a security and bug fix release. - Of particular note is that 2.0.47 addresses four security - vulnerabilities:</p> -<p>Certain sequences of per-directory renegotiations and the SSLCipherSuite - directive being used to upgrade from a weak ciphersuite to a strong one - could result in the weak ciphersuite being used in place of the strong - one.<br /> - <code>[<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0192">CAN-2003-0192</a>]</code></p> -<p>Certain errors returned by accept() on rarely accessed ports could cause - temporal denial of service, due to a bug in the prefork MPM.<br /> - <code>[<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0253">CAN-2003-0253</a>]</code></p> -<p>Denial of service was caused when target host is IPv6 but ftp proxy - server can't create IPv6 socket.<br /> +eleventh public release of Apache 2.0.</p> +<p>This version of Apache is principally a bug fix release. Of particular + note is that 2.0.48 addresses two security vulnerabilities:</p> +<p>mod_cgid mishandling of CGI redirect paths could result in CGI output + going to the wrong client when a threaded MPM is used.<br /> + <code>[<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0789">CAN-2003-0789</a>]</code></p> +<p>A buffer overflow could occur in mod_alias and mod_rewrite when + a regular expression with more than 9 captures is configured.<br /> <code>[<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0254">CAN-2003-0254</a>]</code></p> -<p>The server would crash when going into an infinite loop due to too many - subsequent internal redirects and nested subrequests.<br /> - <code>[VU#379828]</code></p> <p>For further details, see the <a href="http://www.apache.org/dist/httpd/Announcement2.html">announcement</a>.</p> <p align="center"> <a href="download.cgi">Download</a> \| 1.37 +2 -2 httpd-site/xdocs/download.xml Index: download.xml =================================================================== RCS file: /home/cvs/httpd-site/xdocs/download.xml,v retrieving revision 1.36 retrieving revision 1.37 diff -u -r1.36 -r1.37 --- download.xml 28 Oct 2003 01:05:33 -0000 1.36 +++ download.xml 28 Oct 2003 09:03:45 -0000 1.37 @@ -92,7 +92,7 @@ <a href="[preferred]/httpd/httpd-2.0.47-win32-src.zip">httpd-2.0.47-win32-src.zip</a> [<a href="http://www.apache.org/dist/httpd/httpd-2.0.47-win32-src.zip.asc">PGP</a>] [<a href="http://www.apache.org/dist/httpd/httpd-2.0.47-win32-src.zip.md5">MD5</a>] ----> +--> </li> <li>Win32 Binary (MSI Installer): @@ -101,7 +101,7 @@ <a href="[preferred]/httpd/binaries/win32/apache_2.0.47-win32-x86-no_ssl.msi">apache_2.0.47-win32-x86-no_ssl.msi</a> [<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_2.0.47-win32-x86-no_ssl.msi.asc">PGP</a>] [<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_2.0.47-win32-x86-no_ssl.msi.md5">MD5</a>] ----> +--> </li>
Mime	Unnamed text/plain (inline, None, 7614 bytes)
	View raw message