aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorKaarle Ritvanen <kaarle.ritvanen@datakunkku.fi>2017-03-06 13:41:08 +0200
committerKaarle Ritvanen <kaarle.ritvanen@datakunkku.fi>2017-03-06 13:41:08 +0200
commitad0a79552163422c5bebd1b3216a1d06a0560644 (patch)
treec2333785ada5f4b0f88268abc6d2b9bc8ea80126
parent49f07dcd01a5f8f789be3cc5017cec36df2f31ad (diff)
downloadaports-ad0a79552163422c5bebd1b3216a1d06a0560644.tar.bz2
aports-ad0a79552163422c5bebd1b3216a1d06a0560644.tar.xz
main/apache2: remove obsolete patch
-rw-r--r--main/apache2/CVE-2016-5387.patch17
1 files changed, 0 insertions, 17 deletions
diff --git a/main/apache2/CVE-2016-5387.patch b/main/apache2/CVE-2016-5387.patch
deleted file mode 100644
index 494afef17c..0000000000
--- a/main/apache2/CVE-2016-5387.patch
+++ /dev/null
@@ -1,17 +0,0 @@
---- a/server/util_script.c (revision 1752426)
-+++ b/server/util_script.c (working copy)
-@@ -186,6 +186,14 @@ AP_DECLARE(void) ap_add_common_vars(request_rec *r
- else if (!strcasecmp(hdrs[i].key, "Content-length")) {
- apr_table_addn(e, "CONTENT_LENGTH", hdrs[i].val);
- }
-+ /* HTTP_PROXY collides with a popular envvar used to configure
-+ * proxies, don't let clients set/override it. But, if you must...
-+ */
-+#ifndef SECURITY_HOLE_PASS_PROXY
-+ else if (!strcasecmp(hdrs[i].key, "Proxy")) {
-+ ;
-+ }
-+#endif
- /*
- * You really don't want to disable this check, since it leaves you
- * wide open to CGIs stealing passwords and people viewing them