www/apache
1
0
Fork 0
mirror of https://github.com/apache/httpd.git synced 2026-01-06 09:01:14 +03:00
Code Activity
Files
76aa41352dca4c8b6a6ae4c5f2efa451f6a99779
apache/server
History
Eric Covener 76aa41352d CVE-2012-0053: Fix an issue in error responses that could expose 
"httpOnly" cookies when no custom ErrorDocument is specified for 
status code 400.



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1234837 13f79535-47bb-0310-9956-ffa450edef68
2012-01-23 15:04:09 +00:00
..
mpm
Fix the case where AP_DEBUG is unset.
2011-12-19 17:13:55 +00:00
.indent.pro
Apache 1.3.9 baseline for the Apache 2.0 repository.
1999-08-24 06:46:03 +00:00
apreq_cookie.c
Fix warning: 'nlen' may be used uninitialized in this function.
2011-12-19 16:10:22 +00:00
apreq_error.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
apreq_module_cgi.c
value never used : dead assignment
2011-11-21 15:51:43 +00:00
apreq_module_custom.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
apreq_module.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
apreq_param.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
apreq_parser_header.c
value never used: dead assignment
2011-11-21 15:51:48 +00:00
apreq_parser_multipart.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
apreq_parser_urlencoded.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
apreq_parser.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
apreq_util.c
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
buildmark.c
update license header text
2006-07-11 20:33:53 +00:00
config.c
Core configuration: add AllowOverride option to treat syntax
2012-01-09 04:01:06 +00:00
config.m4
Add server directory to INCLUDES.
2011-01-17 10:45:54 +00:00
connection.c
garbage C's in server-status and extra child processes with async lingering
2011-11-18 15:54:18 +00:00
core_filters.c
ctx->bytes_in is never used. Remove a useless iteration through the brigade
2012-01-22 18:50:21 +00:00
core.c
Core configuration: add AllowOverride option to treat syntax
2012-01-09 04:01:06 +00:00
eoc_bucket.c
update license header text
2006-07-11 20:33:53 +00:00
eor_bucket.c
Change the eor bucket to use a pre-cleanup to run the log transaction hook.
2010-06-14 19:07:02 +00:00
error_bucket.c
update license header text
2006-07-11 20:33:53 +00:00
gen_test_char.c
mod_include: Add support for application/x-www-form-urlencoded encoding
2011-10-29 11:13:37 +00:00
gen_test_char.dsp
Remove all /machine:I386 references, these are getting in the way
2006-04-27 05:30:39 +00:00
listen.c
Add lots of unique tags to error log messages
2011-12-02 23:02:04 +00:00
log.c
Further clarify the naming of the entity that directly connects to us by
2011-12-14 01:10:52 +00:00
main.c
Adapt loglevel of config errors during second pass
2011-12-28 14:48:28 +00:00
Makefile.in
As discussed at AC NA 2011
2011-11-13 00:20:32 +00:00
mpm_common.c
Add lots of unique tags to error log messages
2011-12-02 23:02:04 +00:00
mpm_unix.c
Add lots of unique tags to error log messages
2011-12-02 23:02:04 +00:00
NWGNUmakefile
Use var for prelude so its possible to change it at one place.
2011-03-18 03:09:27 +00:00
protocol.c
CVE-2012-0053: Fix an issue in error responses that could expose
2012-01-23 15:04:09 +00:00
provider.c
Add new ap_list_provider_groups() API for mod_info
2011-12-30 10:55:00 +00:00
request.c
Clean up size_t abuse, part 2. ap_malloc/calloc/realloc are explicitly
2012-01-06 18:15:08 +00:00
scoreboard.c
SECURITY (CVE-2012-0031): Fix possible crash on shutdown if a child
2012-01-11 14:33:47 +00:00
util_cfgtree.c
Remove all references to CORE_PRIVATE.
2008-04-07 10:45:43 +00:00
util_charset.c
update license header text
2006-07-11 20:33:53 +00:00
util_cookies.c
Clean up size_t abuse, part 2. ap_malloc/calloc/realloc are explicitly
2012-01-06 18:15:08 +00:00
util_debug.c
Introduce ap_(get|set)_core_module_config() functions/macros and use them
2011-06-06 21:26:56 +00:00
util_ebcdic.c
Add lots of unique tags to error log messages
2011-12-02 23:02:04 +00:00
util_expr_eval.c
Various code cleanup to avoid compiler, cppcheck, or clang warnings:
2011-12-18 17:52:59 +00:00
util_expr_parse.c
Limit recursion in ap_expr evaluation to avoid unbounded stack usage
2011-11-19 21:58:48 +00:00
util_expr_parse.h
Update autogenerated code. Now generated with bison 2.5 instead of 2.4.1
2011-10-10 20:44:40 +00:00
util_expr_parse.y
Limit recursion in ap_expr evaluation to avoid unbounded stack usage
2011-11-19 21:58:48 +00:00
util_expr_private.h
Improve error message by removing 'unexpected T_ERROR' in one case.
2011-10-10 20:41:26 +00:00
util_expr_scan.c
Update autogenerated code. Now generated with bison 2.5 instead of 2.4.1
2011-10-10 20:44:40 +00:00
util_expr_scan.l
Do proper length checks in the expression scanner. This allows to remove the
2011-08-13 09:59:43 +00:00
util_filter.c
Add some more log message tags
2011-12-04 22:09:24 +00:00
util_md5.c
update license header text
2006-07-11 20:33:53 +00:00
util_mutex.c
Add lots of unique tags to error log messages
2011-12-02 23:02:04 +00:00
util_pcre.c
Cleanup effort in prep for GA push:
2011-09-23 13:39:32 +00:00
util_regex.c
fix Sun Studio type mismatch warnings
2010-09-23 19:21:43 +00:00
util_script.c
Further clarify the naming of the entity that directly connects to us by
2011-12-14 01:10:52 +00:00
util_time.c
Add ErrorLogFormat directive for configuring the error log format, including
2010-09-05 15:44:19 +00:00
util_xml.c
Add lots of unique tags to error log messages
2011-12-02 23:02:04 +00:00
util.c
Clean up size_t abuse, part 2. ap_malloc/calloc/realloc are explicitly
2012-01-06 18:15:08 +00:00
vhost.c
Add lots of unique tags to error log messages
2011-12-02 23:02:04 +00:00