Log Message: |
SECURITY [httpd incident CAN-2003-0189] Address a thread safety issue with
apr_password_validate() on AIX, Linux, Mac OS X, and possibly other platforms.
We didn't move the crypt_r checks from apr to apr-util when we moved
apr_password_validate. Add testpass.c to ensure we don't regress.
CVE: CAN-2003-0189
Reviewed by: Justin, Jim, Jeff
|