Ignore:
Timestamp:
Mar 11, 2010, 6:29:29 AM (12 years ago)
Author:
mitchb
Message:
CVE-2010-0434: Putting the "Patch" in "Apache" since... well, 2010
File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/server/fedora/specs/httpd.spec.patch

    r1499 r1505  
    11--- httpd.spec.orig     2010-02-28 05:01:55.000000000 -0500
    2 +++ httpd.spec  2010-02-28 05:03:44.000000000 -0500
     2+++ httpd.spec  2010-03-11 05:30:54.000000000 -0500
    33@@ -7,7 +7,7 @@
    44 Summary: Apache HTTP Server
     
    1010 Source0: http://www.apache.org/dist/httpd/httpd-%{version}.tar.gz
    1111 Source1: index.html
    12 @@ -57,6 +57,13 @@
     12@@ -57,6 +57,14 @@
    1313 Conflicts: pcre < 4.0
    1414 Requires: httpd-tools = %{version}-%{release}, apr-util-ldap
     
    2020+Patch1005: httpd-2.2.x-mod_ssl-sessioncaching.patch
    2121+Patch1006: httpd-suexec-cloexec.patch
     22+Patch1007: httpd-2.2.x-CVE-2010-0434.patch
    2223+
    2324 %description
    2425 The Apache HTTP Server is a powerful, efficient, and extensible
    2526 web server.
    26 @@ -104,6 +111,7 @@
     27@@ -104,6 +112,7 @@
    2728 Requires(post): openssl >= 0.9.7f-4, /bin/cat
    2829 Requires(pre): httpd
     
    3233 
    3334 %description -n mod_ssl
    34 @@ -133,6 +141,12 @@
     35@@ -133,6 +142,13 @@
    3536 # Patch in vendor/release string
    3637 sed "s/@RELEASE@/%{vstring}/" < %{PATCH20} | patch -p1
     
    4142+%patch1005 -p1 -b .ssl-sessioncache
    4243+%patch1006 -p1 -b .cloexec
     44+%patch1007 -p1 -b .cve-2010-0434
    4345+
    4446 # Safety check: prevent build if defined MMN does not equal upstream MMN.
    4547 vmmn=`echo MODULE_MAGIC_NUMBER_MAJOR | cpp -include include/ap_mmn.h | sed -n '/^2/p'`
    4648 if test "x${vmmn}" != "x%{mmn}"; then
    47 @@ -181,10 +195,12 @@
     49@@ -181,10 +197,12 @@
    4850         --with-apr=%{_prefix} --with-apr-util=%{_prefix} \
    4951        --enable-suexec --with-suexec \
Note: See TracChangeset for help on using the changeset viewer.