brian 98/07/19 18:43:43
Modified: . STATUS
Log:
Remove the bug report about Win95 and access files, add Manoj's security fix.
Revision Changes Path
1.442 +6 -5 apache-1.3/STATUS
Index: STATUS
===================================================================
RCS file: /export/home/cvs/apache-1.3/STATUS,v
retrieving revision 1.441
retrieving revision 1.442
diff -u -r1.441 -r1.442
--- STATUS 1998/07/18 07:28:25 1.441
+++ STATUS 1998/07/20 01:43:42 1.442
@@ -14,11 +14,6 @@
WIN32 1.3.1 RELEASE SHOWSTOPPERS:
- * Win95: when authentication is required for directory /foobar/, direct
- access to /foobar/bletch is permitted. PR #2145
-
- UPDATE: may be false alarm, probably shouldn't hold 1.3.1.
-
* can not build tarball until someone verifies the final code
will build on win32. Want to avoid changes-after-tag that
happened with 1.3.0.
@@ -29,6 +24,12 @@
virtualhosting. (If it exists already I can't find it easily.)
Available Patches:
+
+ * [PATCH] PR #2355 and very minor security hole fix
+ Message-ID: <[EMAIL PROTECTED]>
+ With this patch, Apache uses ap_sub_req_lookup_file to get the
+ filename specified in a "file=" parameter (for example, in an
+ flastmod or fsize call).
* "[PATCH] Link DSO modules against possible libraries from $(LIBS)"
Message-ID: <[EMAIL PROTECTED]>
