Re: 2.4.27

2017-07-16 Thread James Cloos
> Jim Riggs writes: > See previous discussion in the "2.4.27" thread, specifically: > https://lists.apache.org/thread.html/bae472cadaeeb761b88bb4569cc0b7d87bc2dcb2fbcbf472d895f32e@%3Cdev.httpd.apache.org%3E I did see that after my initial reply. Still anoying. And

Re: 2.4.27

2017-07-16 Thread Helmut K. C. Tessarek
On 2017-07-16 18:41, James Cloos wrote: > And I've not found any *working* documentation on how to switch to using > php7.0-fpm and libapache2-mod-fcgid. Yea, the documentation on https://wiki.apache.org/httpd/PHP-FPM is also flawed. e.g. if you use the proxy option enablereuse=on in a

Re: CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest

2017-07-16 Thread Rashmi Srinivasan
Hi, Please can you point us to the patch for this CVE? regards, Rashmi On Thu, Jul 13, 2017 at 6:32 PM, William A Rowe Jr wrote: > CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest > > Severity: Important > > Vendor: The Apache Software Foundation > >

Re: svn commit: r1406495 - in /httpd/httpd/trunk: CHANGES include/http_config.h server/core.c

2017-07-16 Thread Stefan Fritsch
On Tuesday, 11 July 2017 15:20:44 CEST Eric Covener wrote: > Does anyone recall what kind of directives were misbehaving? Sorry, I don't remember. But maybe all directives that expect useful information in cmd_parms->path ? This is always "*If" in If-Sections. Cheers, Stefan > It seems > like

Bug report for Apache httpd-2 [2017/07/16]

2017-07-16 Thread bugzilla
+---+ | Bugzilla Bug ID | | +-+ | | Status: UNC=Unconfirmed NEW=New ASS=Assigned