<feed xmlns='http://www.w3.org/2005/Atom'>
<title>buildroot/package/apache, branch 2019.02-op-build</title>
<subtitle>OpenPOWER buildroot sources</subtitle>
<id>https://git.raptorcs.com/git/buildroot/atom?h=2019.02-op-build</id>
<link rel='self' href='https://git.raptorcs.com/git/buildroot/atom?h=2019.02-op-build'/>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/'/>
<updated>2019-01-22T21:14:22+00:00</updated>
<entry>
<title>package/apache: security bump to version 2.4.38</title>
<updated>2019-01-22T21:14:22+00:00</updated>
<author>
<name>Peter Korsgaard</name>
<email>peter@korsgaard.com</email>
</author>
<published>2019-01-22T18:15:42+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=7675863549dde0b63df1916bbae0fb6cef6f8f44'/>
<id>urn:sha1:7675863549dde0b63df1916bbae0fb6cef6f8f44</id>
<content type='text'>
Fixes the following security vulnerabilities:

  *) SECURITY: CVE-2018-17199 (cve.mitre.org)
     mod_session: mod_session_cookie does not respect expiry time allowing
     sessions to be reused.  [Hank Ibell]

  *) SECURITY: CVE-2018-17189 (cve.mitre.org)
     mod_http2: fixes a DoS attack vector. By sending slow request bodies
     to resources not consuming them, httpd cleanup code occupies a server
     thread unnecessarily. This was changed to an immediate stream reset
     which discards all stream state and incoming data.  [Stefan Eissing]

  *) SECURITY: CVE-2019-0190 (cve.mitre.org)
     mod_ssl: Fix infinite loop triggered by a client-initiated
     renegotiation in TLSv1.2 (or earlier) with OpenSSL 1.1.1 and
     later.  PR 63052.  [Joe Orton]

For more details, see the CHANGES file:
https://www.apache.org/dist/httpd/CHANGES_2.4.38

Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>package/apache: enable optional support for nghttp2</title>
<updated>2018-12-30T15:38:11+00:00</updated>
<author>
<name>Ryan Coe</name>
<email>bluemrp9@gmail.com</email>
</author>
<published>2018-12-29T01:39:09+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=9a889534cb21118b9ef9031960708f723b17d66d'/>
<id>urn:sha1:9a889534cb21118b9ef9031960708f723b17d66d</id>
<content type='text'>
Signed-off-by: Ryan Coe &lt;bluemrp9@gmail.com&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@bootlin.com&gt;
</content>
</entry>
<entry>
<title>package/apache: bump version to 2.4.37</title>
<updated>2018-10-23T23:18:48+00:00</updated>
<author>
<name>Bernd Kuhls</name>
<email>bernd.kuhls@t-online.de</email>
</author>
<published>2018-10-23T16:19:08+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=5f832bb812382bc45cfdcb411b57c5cc9cae56b9'/>
<id>urn:sha1:5f832bb812382bc45cfdcb411b57c5cc9cae56b9</id>
<content type='text'>
Changelog: http://www.apache.org/dist/httpd/CHANGES_2.4.37
Signed-off-by: Bernd Kuhls &lt;bernd.kuhls@t-online.de&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>package/apache: security bump to version 2.4.35</title>
<updated>2018-09-30T08:37:08+00:00</updated>
<author>
<name>Bernd Kuhls</name>
<email>bernd.kuhls@t-online.de</email>
</author>
<published>2018-09-30T07:59:17+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=ac22fafdc83e285d305a618ba9655671eadf42cf'/>
<id>urn:sha1:ac22fafdc83e285d305a618ba9655671eadf42cf</id>
<content type='text'>
Fixes: CVE-2018-11763: mod_http2, DoS via continuous SETTINGS frames
https://lists.apache.org/thread.html/d435b0267a76501b9e06c552b20c887171064cde38e46d678da4d3dd@%3Cannounce.httpd.apache.org%3E

Release notes:
https://lists.apache.org/thread.html/5d604774652fc073b1b161584d0d1efbdba7898c40ae2e2334725e5f@%3Cannounce.httpd.apache.org%3E

Signed-off-by: Bernd Kuhls &lt;bernd.kuhls@t-online.de&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>package/apache: bump version to 2.4.34</title>
<updated>2018-07-16T22:34:33+00:00</updated>
<author>
<name>Bernd Kuhls</name>
<email>bernd.kuhls@t-online.de</email>
</author>
<published>2018-07-16T19:34:57+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=8ef1aaa08478a2d84c17e8bd12e33b0802433ac1'/>
<id>urn:sha1:8ef1aaa08478a2d84c17e8bd12e33b0802433ac1</id>
<content type='text'>
Changelog: http://www.apache.org/dist/httpd/CHANGES_2.4.34

Signed-off-by: Bernd Kuhls &lt;bernd.kuhls@t-online.de&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>apache: add systemd init script</title>
<updated>2018-06-23T07:51:59+00:00</updated>
<author>
<name>Fabrice Fontaine</name>
<email>fontaine.fabrice@gmail.com</email>
</author>
<published>2018-06-22T21:08:58+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=2ce4028d5ff53acc56c6f07b4c63ccc9105004d2'/>
<id>urn:sha1:2ce4028d5ff53acc56c6f07b4c63ccc9105004d2</id>
<content type='text'>
Signed-off-by: Fabrice Fontaine &lt;fontaine.fabrice@gmail.com&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>apache: add reload target to sysv init script</title>
<updated>2018-06-22T17:10:10+00:00</updated>
<author>
<name>Fabrice Fontaine</name>
<email>fontaine.fabrice@gmail.com</email>
</author>
<published>2018-06-22T16:36:28+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=876917689b32c5b65ba4e0b2014b79c55b6a45f3'/>
<id>urn:sha1:876917689b32c5b65ba4e0b2014b79c55b6a45f3</id>
<content type='text'>
Signed-off-by: Fabrice Fontaine &lt;fontaine.fabrice@gmail.com&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>apache: add init sysv script</title>
<updated>2018-06-21T19:40:58+00:00</updated>
<author>
<name>Fabrice Fontaine</name>
<email>fontaine.fabrice@gmail.com</email>
</author>
<published>2018-06-20T21:00:21+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=fe03f5231f84c353914d66baef584014fcfb99f3'/>
<id>urn:sha1:fe03f5231f84c353914d66baef584014fcfb99f3</id>
<content type='text'>
sysv init script is just a wrapper to apachectl

Signed-off-by: Fabrice Fontaine &lt;fontaine.fabrice@gmail.com&gt;
Tested-by: Carlos Santos &lt;casantos@datacom.com.br&gt;
Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
<entry>
<title>package/apache: fix lua detection</title>
<updated>2018-04-01T14:22:25+00:00</updated>
<author>
<name>Bernd Kuhls</name>
<email>bernd.kuhls@t-online.de</email>
</author>
<published>2018-04-01T12:26:40+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=6087e548007b78ead9cb73bb4d642e3fb5236bd3'/>
<id>urn:sha1:6087e548007b78ead9cb73bb4d642e3fb5236bd3</id>
<content type='text'>
Patch suggested by Thomas: Adding a path to --with-lua disables
pkgconf-based detection of lua, which in some cases needs libdl.

This patch removes --with-lua which fixes
http://autobuild.buildroot.net/results/cc1/cc13f4cef9cf6f18615d58f1d83b233812f19fa0/

Signed-off-by: Bernd Kuhls &lt;bernd.kuhls@t-online.de&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@bootlin.com&gt;
</content>
</entry>
<entry>
<title>package/apache: add optional support for lua</title>
<updated>2018-03-31T18:17:09+00:00</updated>
<author>
<name>Bernd Kuhls</name>
<email>bernd.kuhls@t-online.de</email>
</author>
<published>2018-03-30T16:50:36+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=be796657cb921d33a7ef8debbd042e5f9fed5b8a'/>
<id>urn:sha1:be796657cb921d33a7ef8debbd042e5f9fed5b8a</id>
<content type='text'>
Signed-off-by: Bernd Kuhls &lt;bernd.kuhls@t-online.de&gt;
Signed-off-by: Thomas Petazzoni &lt;thomas.petazzoni@bootlin.com&gt;
</content>
</entry>
</feed>
