httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From wr...@apache.org
Subject svn commit: r320924 - in /httpd/site/trunk/docs: download.html index.html
Date Thu, 13 Oct 2005 21:10:23 GMT
Author: wrowe
Date: Thu Oct 13 14:10:20 2005
New Revision: 320924

URL: http://svn.apache.org/viewcvs?rev=320924&view=rev
Log:

  Prepare to push out 1.3.34/generated site in the next couple days.

Modified:
    httpd/site/trunk/docs/download.html
    httpd/site/trunk/docs/index.html

Modified: httpd/site/trunk/docs/download.html
URL: http://svn.apache.org/viewcvs/httpd/site/trunk/docs/download.html?rev=320924&r1=320923&r2=320924&view=diff
==============================================================================
--- httpd/site/trunk/docs/download.html (original)
+++ httpd/site/trunk/docs/download.html Thu Oct 13 14:10:20 2005
@@ -191,12 +191,12 @@
 <table border="0" cellspacing="0" cellpadding="2" width="100%">
  <tr><td bgcolor="#828DA6">
   <font color="#ffffff" face="arial,helvetica,sanserif">
-   <a name="apache13"><strong>Apache 1.3.33 is also available</strong></a>
+   <a name="apache13"><strong>Apache 1.3.34 is also available</strong></a>
   </font>
  </td></tr>
  <tr><td>
   <blockquote>
-<p>Apache 1.3.33 is the best available version of the 1.3 series, and
+<p>Apache 1.3.34 is the best available version of the 1.3 series, and
 is recommended over all previous 1.3 releases.  This release adds several
 enhancements, fixes a number of bugs and addresses 2 security issues described in
 <a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0940">CAN-2004-0940
(cve.mitre.org)</a> and
@@ -209,18 +209,18 @@
 Significantly new features will more than likely not be added to 1.3
 in preference to 2.0, although important new features and
 enhancements will be seriously considered for inclusion in 1.3.</p>
-<p>Use the Apache 1.3.33 version if you need to use third party
+<p>Use the Apache 1.3.34 version if you need to use third party
 modules that are not yet available as an Apache 2.0 module.  Apache
 1.3 is not compatibile with Apache 2.0 modules.</p>
 <ul>
-<li>Unix Source: <a href="[preferred]/httpd/apache_1.3.33.tar.gz">apache_1.3.33.tar.gz</a>
-[<a href="http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz.asc">PGP</a>]
[<a href="http://www.apache.org/dist/httpd/apache_1.3.33.tar.gz.md5">MD5</a>]</li>
+<li>Unix Source: <a href="[preferred]/httpd/apache_1.3.34.tar.gz">apache_1.3.34.tar.gz</a>
+[<a href="http://www.apache.org/dist/httpd/apache_1.3.34.tar.gz.asc">PGP</a>]
[<a href="http://www.apache.org/dist/httpd/apache_1.3.34.tar.gz.md5">MD5</a>]</li>
 
-<li>Unix Source: <a href="[preferred]/httpd/apache_1.3.33.tar.Z">apache_1.3.33.tar.Z</a>
-[<a href="http://www.apache.org/dist/httpd/apache_1.3.33.tar.Z.asc">PGP</a>]
[<a href="http://www.apache.org/dist/httpd/apache_1.3.33.tar.Z.md5">MD5</a>]</li>
+<li>Unix Source: <a href="[preferred]/httpd/apache_1.3.34.tar.Z">apache_1.3.34.tar.Z</a>
+[<a href="http://www.apache.org/dist/httpd/apache_1.3.34.tar.Z.asc">PGP</a>]
[<a href="http://www.apache.org/dist/httpd/apache_1.3.34.tar.Z.md5">MD5</a>]</li>
 
-<li>Win32 Binary (Self extracting): <a href="[preferred]/httpd/binaries/win32/apache_1.3.33-win32-x86-no_src.exe">apache_1.3.33-win32-x86-no_src.exe</a>
[<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_1.3.33-win32-x86-no_src.exe.asc">PGP</a>]
-[<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_1.3.33-win32-x86-no_src.exe.md5">MD5</a>]</li>
+<li>Win32 Binary (Self extracting): <a href="[preferred]/httpd/binaries/win32/apache_1.3.34-win32-x86-no_src.exe">apache_1.3.34-win32-x86-no_src.exe</a>
[<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_1.3.34-win32-x86-no_src.exe.asc">PGP</a>]
+[<a href="http://www.apache.org/dist/httpd/binaries/win32/apache_1.3.34-win32-x86-no_src.exe.md5">MD5</a>]</li>
 
 <li><a href="[preferred]/httpd/">Other files</a></li>
 </ul>

Modified: httpd/site/trunk/docs/index.html
URL: http://svn.apache.org/viewcvs/httpd/site/trunk/docs/index.html?rev=320924&r1=320923&r2=320924&view=diff
==============================================================================
--- httpd/site/trunk/docs/index.html (original)
+++ httpd/site/trunk/docs/index.html Thu Oct 13 14:10:20 2005
@@ -143,28 +143,28 @@
            <table border="0" cellspacing="0" cellpadding="2" width="100%">
  <tr><td bgcolor="#525D76">
   <font color="#ffffff" face="arial,helvetica,sanserif">
-   <a name="1.3.33"><strong>Apache 1.3.33 Released</strong></a>
+   <a name="1.3.34"><strong>Apache 1.3.34 Released</strong></a>
   </font>
  </td></tr>
  <tr><td>
   <blockquote>
 <p>The Apache Group is pleased to announce the
-   <a href="http://www.apache.org/dist/httpd/Announcement1.3.html">legacy release of
the 1.3.33 version of the Apache HTTP Server</a>.
+   <a href="http://www.apache.org/dist/httpd/Announcement1.3.html">legacy release of
the 1.3.34 version of the Apache HTTP Server</a>.
 </p>
-<p>This version of Apache is principally a security and bug fix
-release.  Of particular note is that 1.3.33 addresses and fixes the
-following 2 security related issues:</p>
-<p>Fix potential buffer overflow with escaped characters in SSI tag string.<br.
/>
-       <code>[<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0940">CAN-2004-0940
(cve.mitre.org)</a>]</code></p>
-<p>Reject responses from a remote server if sent an invalid (negative) Content-Length.<br.
/>
-       <code>[<a href="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0492">CAN-2004-0492
(cve.mitre.org)</a>]</code></p>
+<p>This version of Apache is principally a security and bug fix release.
+   Of particular note is that 1.3.34 addresses the following security issue:</p>
+<dl>
+<dd>If a request contains both Transfer-Encoding and Content-Length headers,
+    remove the Content-Length, mitigating some HTTP Request Splitting/Spoofing
+    attacks.</dd>
+</dl>
 <p>For further details, see the 
    <a href="http://www.apache.org/dist/httpd/Announcement1.3.html">announcement</a>.</p>
 <p align="center">
 <a href="download.cgi">Download</a> | 
 <a href="docs/1.3/windows.html">Apache for Win32</a> |
 <a href="docs/1.3/new_features_1_3.html">New Features in Apache 1.3</a> |
-<a href="http://www.apache.org/dist/httpd/CHANGES_1.3">ChangeLog for 1.3.33</a>
+<a href="http://www.apache.org/dist/httpd/CHANGES_1.3">ChangeLog for 1.3.34</a>
 </p>
   </blockquote>
  </td></tr>



Mime
View raw message