logo
Apache Lounge
Webmasters

 


About

Forum Index Downloads Search Register Log in  RSS Apache Lounge
 



Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Apache Lounge is not sponsored by anyone.

Your donations will help to keep this site alive and well, and continuing the building of the binaries.



mod_fcgid 2.3.9 available

 
Post new topic   Reply to topic    Apache Forum Index -> Apache



View previous topic :: View next topic  
Author Message
Steffen
Moderator


Joined: 15 Oct 2005
Posts: 2494
Location: Hilversum, NL, EU

PostPosted: Sat 05 Oct '13 11:43    Post subject: mod_fcgid 2.3.9 available Reply with quote

Voting is ended at ASF, mod_fcgid 2.3.9 is released as GA.

note: 2.3.8 was not released, because issues with Windows.



Steffen


Changes with mod_fcgid 2.3.9

*) Revert fix for PR 53693, added in 2.3.8 but undocumented. Fix
issues with a minor optimization added in 2.3.8. [Jeff Trawick]

Changes with mod_fcgid 2.3.8 (not released)

*) SECURITY: CVE-2013-4365 (cve.mitre.org)
Fix possible heap buffer overwrite. Reported and solved by:
[Robert Matthews <rob tigertech.com>]

*) Add experimental cmake-based build system for Windows. [Jeff Trawick]

*) Correctly parse quotation and escaped spaces in FcgidWrapper and the
AAA Authenticator/Authorizor/Access directives' command line argument,
as currently documented. PR 51194 [William Rowe]

*) Honor quoted FcgidCmdOptions arguments (notably for InitialEnv
assignments). PR 51657 [William Rowe]

*) Conform script response parsing with mod_cgid and ensure no response
body is sent when ap_meets_conditions() determines that request
conditions are met. [Chris Darroch]

*) Improve logging in access control hook functions. [Chris Darroch]

*) Avoid making internal sub-requests and processing Location headers
when in FCGI_AUTHORIZER mode, as the auth hook functions already
treat Location headers returned by scripts as an error since
redirections are not meaningful in this mode. [Chris Darroch]
Back to top
Smitty



Joined: 03 Jan 2008
Posts: 195

PostPosted: Tue 08 Oct '13 15:10    Post subject: Reply with quote

Updated and working great here.
Back to top
Steffen
Moderator


Joined: 15 Oct 2005
Posts: 2494
Location: Hilversum, NL, EU

PostPosted: Tue 25 Apr '17 12:46    Post subject: Reply with quote

VC15 Added
Back to top


Post new topic   Reply to topic    Apache Forum Index -> Apache
Page 1 of 1