CVS commit: pkgsrc/www/apache22

["Takahiro Kambe" <taca%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   taca
Date:           Wed Sep 14 07:10:21 UTC 2011

Modified Files:
        pkgsrc/www/apache22: Makefile distinfo

Log Message:
Update apahce22 package to 2.2.21.

Quote from release announce:

   The Apache Software Foundation and the Apache HTTP Server Project are
   pleased to announce the release of version 2.2.21 of the Apache HTTP
   Server ("Apache").  This version of Apache is principally a security
   and bug fix release:

     * SECURITY: CVE-2011-3348 (cve.mitre.org)
       mod_proxy_ajp when combined with mod_proxy_balancer: Prevents
       unrecognized HTTP methods from marking ajp: balancer members
       in an error state, avoiding denial of service.

     * SECURITY: CVE-2011-3192 (cve.mitre.org)
       core: Further fixes to the handling of byte-range requests to use
       less memory, to avoid denial of service. This patch includes fixes
       to the patch introduced in release 2.2.20 for protocol compliance,
       as well as the MaxRanges directive.

   Note the further advisories on the state of CVE-2011-3192 will no longer
   be broadcast, but will be kept up to date at;

     http://httpd.apache.org/security/CVE-2011-3192.txt

   We consider this release to be the best version of Apache available, and
   encourage users of all prior versions to upgrade.


To generate a diff of this commit:
cvs rdiff -u -r1.69 -r1.70 pkgsrc/www/apache22/Makefile
cvs rdiff -u -r1.41 -r1.42 pkgsrc/www/apache22/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.