brian 98/07/19 18:43:43
Modified: . STATUS Log: Remove the bug report about Win95 and access files, add Manoj's security fix. Revision Changes Path 1.442 +6 -5 apache-1.3/STATUS Index: STATUS =================================================================== RCS file: /export/home/cvs/apache-1.3/STATUS,v retrieving revision 1.441 retrieving revision 1.442 diff -u -r1.441 -r1.442 --- STATUS 1998/07/18 07:28:25 1.441 +++ STATUS 1998/07/20 01:43:42 1.442 @@ -14,11 +14,6 @@ WIN32 1.3.1 RELEASE SHOWSTOPPERS: - * Win95: when authentication is required for directory /foobar/, direct - access to /foobar/bletch is permitted. PR #2145 - - UPDATE: may be false alarm, probably shouldn't hold 1.3.1. - * can not build tarball until someone verifies the final code will build on win32. Want to avoid changes-after-tag that happened with 1.3.0. @@ -29,6 +24,12 @@ virtualhosting. (If it exists already I can't find it easily.) Available Patches: + + * [PATCH] PR #2355 and very minor security hole fix + Message-ID: <[EMAIL PROTECTED]> + With this patch, Apache uses ap_sub_req_lookup_file to get the + filename specified in a "file=" parameter (for example, in an + flastmod or fsize call). * "[PATCH] Link DSO modules against possible libraries from $(LIBS)" Message-ID: <[EMAIL PROTECTED]>