/[Apache-SVN]
ViewVC logotype

Revision 58900

Jump to revision: Previous Next
Author: jerenkrantz
Date: Wed May 28 04:45:46 2003 UTC (21 years ago)
Changed paths: 8
Log Message: 
SECURITY [httpd incident CAN-2003-0189] Address a thread safety issue with
apr_password_validate() on AIX, Linux, Mac OS X, and possibly other platforms.

We didn't move the crypt_r checks from apr to apr-util when we moved
apr_password_validate.  Add testpass.c to ensure we don't regress.

CVE: CAN-2003-0189
Reviewed by:	Justin, Jim, Jeff

Changed paths

Path Details
Directoryapr/apr-util/trunk/CHANGES modified , text changed
Directoryapr/apr-util/trunk/build/apu-hints.m4 modified , text changed
Directoryapr/apr-util/trunk/configure.in modified , text changed
Directoryapr/apr-util/trunk/crypto/apr_md5.c modified , text changed
Directoryapr/apr-util/trunk/test/ modified , props changed
Directoryapr/apr-util/trunk/test/.cvsignore modified , text changed
Directoryapr/apr-util/trunk/test/Makefile.in modified , text changed
Directoryapr/apr-util/trunk/test/testpass.c added
infrastructure at apache.org
 ViewVC Help
Powered by ViewVC 1.1.26