Submitted by: Eric Covener
Reviewed by: trawick, jorton, jim
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/1.3.x@156287
13f79535-47bb-0310-9956-
ffa450edef68
PROPOSED PATCHES FOR THIS RELEASE:
- *) ap_auth_nonce misuse of ap_snprintf (Eric Covener patch)
- [1.3 PATCH] mod_digest: ap_auth_nonce returns diff value between calls
- (using the s/%pI/%pA/ proposal)
- +1: trawick, jorton, jim
-
*) mod_log_config: Cleanup log_header_out function to allow multiple headers
like Set-Cookie to be logged properly. PR 27787
modules/loggers/mod_log_config.c: r1.116 (2.x patch - need 1.3 version)
Changes with Apache 1.3.34
+ *) mod_digest: Fix another nonce string calculation issue.
+ [Eric Covener]
+
Changes with Apache 1.3.33
*) SECURITY: CAN-2004-0940 (cve.mitre.org)
*) mod_rewrite: Fix query string handling for proxied URLs. PR 14518.
[michael teitler <michael.teitler cetelem.fr>,
Jan Kratochvil <rcpt-dev.AT.httpd.apache.org jankratochvil.net>]
-
+
*) mod_rewrite: Fix 0 bytes write into random memory position.
PR 31036. [André Malo]
* But then again - you should use AuthDigestRealmSeed in your config
* file if you care. So the adhoc value should do.
*/
- return ap_psprintf(r->pool,"%pI%pp%pp%pp%pp",
+ return ap_psprintf(r->pool,"%pA%pp%pp%pp%pp",
&r->connection->local_addr.sin_addr,
(void *)ap_user_name,
(void *)ap_listeners,
projects / thirdparty / apache / httpd.git / commitdiff
