544 Commits (b0a632f253737463138c182a3fb9c8be04caef5d)

Author SHA1 Message Date
Stefan Bühler b0a632f253 [network] fix compile break in calculation of sockaddr_un size if SUN_LEN is not defined (fixes #2609) 7 years ago
Stefan Bühler 76870cfef1 add NEWS entry for previous commit 7 years ago
Stefan Bühler 084df7e99a [ssl] disable SSL3.0 by default 8 years ago
Stefan Bühler 4a6838103d [mod_dirlisting,mod_redirect,mod_rewrite] abort config parsing if pcre-compile fails or isn't available 8 years ago
Stefan Bühler c4f214584a [build] use fortify flags with "extra-warnings" 8 years ago
Moritz Wilhelmy 4d55d4ada3 add support for (Free)BSD extended attributes 8 years ago
Stefan Bühler 059a5a67dd fix typo in NEWS entry for #2579 8 years ago
Stefan Bühler 3b23130ea2 add more mime types and a script to generate mime.conf (fxies #2579) 8 years ago
Stefan Bühler f8f3351506 fix bad shift in conditional netmask ".../0" handling 8 years ago
Stefan Bühler 3605a3bec3 use keep-alive timeout while waiting for HTTP headers; use always the read timeout while waiting for the HTTP body 8 years ago
Stefan Bühler e1b1c52028 - next is 1.4.36 8 years ago
Stefan Bühler d1a2356916 fix SQL injection / host name validation (thx Jann Horn) 8 years ago
Stefan Bühler efc41b2bb1 check length of unix domain socket filenames 8 years ago
Stefan Bühler 8e31e18b8e [mod_webdav] fix logic error in handling file creation error 8 years ago
Stefan Bühler 57c661c191 fix unchecked return values from stream_open/stat_cache_get_entry 8 years ago
Stefan Bühler b106513e58 [network] check return value of lseek() 8 years ago
Stefan Bühler 9f2be4882d force assertion: setting FD_CLOEXEC must work (if available) 8 years ago
Stefan Bühler ef0b353fee [mod_cml_lua] fix null pointer dereference 8 years ago
Stefan Bühler 07dd0bd0a5 add force_assert() to enforce assertions as simple assert()s are disabled by -DNDEBUG (fixes #2546) 8 years ago
Stefan Bühler fba7dd6f43 fix resource leaks in error cases on config parsing and other initializations 8 years ago
Stefan Bühler bf10267807 [buffer] fix length check in buffer_is_equal_right_len 8 years ago
Stefan Bühler bcd35cc264 remove logical dead code 8 years ago
Stefan Bühler 29a1070299 add comments for switch fall throughs 8 years ago
Stefan Bühler b239e7734a [mod_magnet] fix memory leak 8 years ago
Stefan Bühler b461e031f5 [mod_fastcgi,mod_scgi] fix resource leaks on spawning backends 8 years ago
Stefan Bühler d59c910d6a [mod_dirlisting] fix memory leak if pcre fails 8 years ago
Stefan Bühler 0aaf939e5e [mod_rrdtool] fix invalid read (string not null terminated) 8 years ago
Stefan Bühler fc3a060a04 [mod_fastcgi] fix use after free (only triggered if fastcgi debug is active) 8 years ago
Stefan Bühler b8a1835093 NEWS entry for previous commit 8 years ago
Stefan Bühler 0d855be97e - next is 1.4.35 8 years ago
Stefan Bühler 24994e113a [mod_webdav] fix fd leak found with parfait (fixes #2530, thx kukackajiri) 8 years ago
Stefan Bühler 657566828e [mod_mysql_vhost] fix memory leak on config init (#2530) 8 years ago
Stefan Bühler e346794d59 [auto* build] remove -no-undefined from linker flags, as we actually link modules with undefined symbols (fixes #2533) 8 years ago
Stefan Bühler f0e5c1415d [core] decode URL before rewrite, enabling it to work in $HTTP["url"] conditionals (fixes #2526) 8 years ago
Stefan Bühler 17762fad01 maintain physical.basedir (the "acting" doc-root as prefix of physical.path) in more places 8 years ago
Stefan Bühler c8fbc16985 [ssl] fix regression from CVE-2013-4508 (client-cert sessions were broken) 9 years ago
Stefan Bühler 99cddff73a [core] check success of setuid,setgid,setgroups (CVE-2013-4559) 9 years ago
Stefan Bühler d8b363c1d1 [stat-cache] fix FAM cleanup/fdevent handling 9 years ago
Stefan Bühler ae1335503a [stat-cache] FAM: fix use after free (CVE-2013-4560) 9 years ago
Stefan Bühler 6b7240f2d8 NEWS entry for previous commit 9 years ago
Stefan Bühler 1af871fcef [ssl] fix SNI handling; only use key+cert+verify-client from SNI specific config (fixes #2525, CVE-2013-4508) 9 years ago
Stefan Bühler 268c054c40 [mod_extforward] fix compilation without IPv6, (not) using undefined var (fixes #2515, thx mm) 9 years ago
Stefan Bühler 9b0d54d7cc [mod_auth] explicitly link ssl for SHA1 (fixes #2517) 9 years ago
Stefan Bühler 32199a7bdf - next is 1.4.34 9 years ago
Stefan Bühler 29ff92d9ba [core] set signal handlers before forking child processes in modules/plugins_call_set_defaults (fixes #2502) 9 years ago
Stefan Bühler 9cfc080ab7 [core] allow files to be used as document-root (fixes #2475) 9 years ago
Stefan Bühler c26b0f9617 [mod_accesslog] add accesslog.syslog-level option (fixes #2480) 9 years ago
Stefan Bühler f0e5b84c27 [mod_simple_vhost] fix cache; skip module if simple-vhost.server-root is empty (thx rm for reporting) 9 years ago
Stefan Bühler 92567b8b8f [core] check whether server.chroot exists 9 years ago
Stefan Bühler 916cf7cfc0 [core] remove requirement that default doc-root has to exist, there are reasonable scenarios not requiring static files at all 9 years ago