[[ header START ]]
telegram

Форум обсуждение

telegram

Send message

telegram

+7-981-8529467 (St.Petersburg),
WhatsUp, Telegram

telegram

t.me/os2_guru

Buy eCoSoft
shareware

eComStation.RU
ru · en · de · es · it · pt · cz · pl · fr 		OS/2 is a greatly different operating system for PC (ArcaOS, eComStation, IBM OS/2 Warp)
Applications, news, reviews, support of users, hardware, questions and answers. 		 
News  ArcaOS 5.1.1  How to use  Hardware  Updates/fixes  
 
 
eCoSoft  Future  Community  Projects  

eCo Software
doesn't receive
payments from USA

How to buy
russian OS/2 apps?

The concept of
OS/2 development

 
Update

 
Applications

 
Advantages:

 
For developer:

 
(Пайпы программ)

 
Companies:

 
History:

 
(Бонусы)

 
Advice:

 
(Барьеры и решения)

 
Technologies:

 
(Применение в науке, лаборатории, ..)

 

 
Solutions

 
New eComStation:

 
Future:

 
(Ссылки на другие сайты)

 
(Картинка дня)

 
OS/2 artefacts:

 
Gadgets:

Multimedia

Games

Web

Enhancers

Development

Drivers

Servers

 





Last active poll: What is the height of RPM barrier?

[Google]

IBM OS/2 Warp Server for e-business

List of all programs

Add new program!

Update data about this program!

Program search string:

Look for every word separately

Choose program by alphabet: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z
 
 

Apache
Description * FAQ * Reviews * Whatsnew * License * Testimonials

Latest changes

[url]

Apache 1.3.31 is the best available version of the 1.3 series, and is recommended over all previous 1.3 releases. This release fixes a number of bugs and addresses 4 security issues described in CAN-2003-0987 (cve.mitre.org), CAN-2003-0020 (cve.mitre.org), CAN-2004-0174 (cve.mitre.org) and CAN-2003-0993 (cve.mitre.org).

"Apache 1.3.31 Major changes

Security vulnerabilities

The main security vulnerabilities addressed in 1.3.31 are:

* o CAN-2003-0987 (cve.mitre.org)

In mod_digest, verify whether the nonce returned in the client

response is one we issued ourselves. This problem does not affect

mod_auth_digest.

* CAN-2003-0020 (cve.mitre.org)

Escape arbitrary data before writing into the errorlog.

* CAN-2004-0174 (cve.mitre.org)

Fix starvation issue on listening sockets where a short-lived

connection on a rarely-accessed listening socket will cause a child to

hold the accept mutex and block out new connections until another

connection arrives on that rarely-accessed listening socket.

* CAN-2003-0993 (cve.mitre.org)

Fix parsing of Allow/Deny rules using IP addresses without a

netmask; issue is only known to affect big-endian 64-bit platforms

New features

New features that relate to specific platforms:

* Linux 2.4+: If Apache is started as root and you

codeCoreDumpDirectory, coredumps are enabled via the prctl() syscall.

New features that relate to specific platforms:

* Add mod_whatkilledus and mod_backtrace (experimental) for reporting

diagnostic information after a child process crash.

* Add fatal exception hook for running diagnostic code after a crash.

* Forensic logging module added (mod_log_forensic)

* '%X' is now accepted as an alias for '%c' in the LogFormat

directive. This allows you to configure logging to still log the

connection status even with mod_ssl

Bugs fixed

The following bugs were found in Apache 1.3.29 (or earlier) and have been

fixed in Apache 1.3.31:

* Fix memory corruption problem with ap_custom_response() function.

The core per-dir config would later point to request pool data that would

be reused for different purposes on different requests.

* mod_usertrack no longer inspects the Cookie2 header for the cookie

name. It also no longer overwrites other cookies.

* Fix bug causing core dump when using CookieTracking without

specifying a CookieName directly.

* UseCanonicalName off was ignoring the client provided port information."



Information is sent by: Eugene Gorbunoff -- 2004-07-17 23:17:10

Users' comments:

Comment this program.

Your Name:

Your E-Mail:

CODE:
722132