cpet/openbsd-ports
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
94dd6c5e77
openbsd-ports/www/mod_auth_ldap/patches/patch-auth_ldap_c

20 lines
636 B
Plaintext
Raw Normal View History

Define LDAP_DEPRECATED because OpenLDAP wants to make sure that every older app is subtly but totaly broken by removing API functions unless we use the magic button. Depending on the architecture the code may work or crash horribly without this. OK sthen@ (there are similar hacks in many other apps)
2009-05-11 15:40:58 -04:00
$OpenBSD: patch-auth_ldap_c,v 1.3 2009/05/11 19:40:58 claudio Exp $
Security fix for mod_auth_ldap-1.6.0. Fixes a security bug that could allow attacker to execute arbitrary commands as the apache user. More information: http://www.rudedog.org/auth_ldap/Changes.html ok henning@ (MAINTAINER)
2007-01-22 10:04:31 -05:00
Fixes a security bug that could allow attacker to execute arbitrary
commands as the apache user.
This is fixed in auth_ldap-1.6.1 but that release is broken. So we just
took the security fix.
Define LDAP_DEPRECATED because OpenLDAP wants to make sure that every older app is subtly but totaly broken by removing API functions unless we use the magic button. Depending on the architecture the code may work or crash horribly without this. OK sthen@ (there are similar hacks in many other apps)
2009-05-11 15:40:58 -04:00
--- auth_ldap.c.orig Wed Jul 4 16:38:03 2001
+++ auth_ldap.c Sun May 10 12:37:14 2009
@@ -87,7 +87,7 @@ void auth_ldap_log_reason(request_rec *r, const char *
Security fix for mod_auth_ldap-1.6.0. Fixes a security bug that could allow attacker to execute arbitrary commands as the apache user. More information: http://www.rudedog.org/auth_ldap/Changes.html ok henning@ (MAINTAINER)
2007-01-22 10:04:31 -05:00
#if APACHE_RELEASE < 1030000
log_reason(buf, r->uri, r);
#else
- ap_log_rerror(APLOG_MARK, APLOG_ERR|APLOG_NOERRNO, r, buf);
+ ap_log_rerror(APLOG_MARK, APLOG_ERR|APLOG_NOERRNO, r, "%s", buf);
#endif
}
Reference in New Issue Copy Permalink