Subject: CVS commit: [pkgsrc-2008Q2] pkgsrc/www/apache22
From: S.P.Zeidler
Date: 2008-08-12 20:16:33
Message id: 20080812181633.8FE88175D0@cvs.netbsd.org
Log Message:
Pullup ticket 2476 - requested by tron
Security fix

Revisions pulled up:
- pkgsrc/www/apache22/Makefile			1.28
- pkgsrc/www/apache22/distinfo			1.12
- pkgsrc/www/apache22/patches/patch-ab		1.8

   Module Name:	pkgsrc
   Committed By:	tron
   Date:		Sat Aug  9 22:16:44 UTC 2008

   Modified Files:
   	pkgsrc/www/apache22: Makefile distinfo
   Added Files:
   	pkgsrc/www/apache22/patches: patch-ab

   Log Message:
   Add patch from Apache SVN repository to avoid cross-site scripting attacks
   in the FTP proxy module. This fixes the security vulnerability reported
   in CVE-2008-2939.

   To generate a diff of this commit:
   cvs rdiff -r1.27 -r1.28 pkgsrc/www/apache22/Makefile
   cvs rdiff -r1.11 -r1.12 pkgsrc/www/apache22/distinfo
   cvs rdiff -r0 -r1.8 pkgsrc/www/apache22/patches/patch-ab
Files:
RevisionActionfile
1.27.4.1modifypkgsrc/www/apache22/Makefile
1.11.4.1modifypkgsrc/www/apache22/distinfo
1.7.2.1addpkgsrc/www/apache22/patches/patch-ab