apache2: security update to version 2.4.52

author Josef Schlehofer <pepe.schlehofer@gmail.com>

Fri, 28 Jan 2022 16:05:28 +0000 (17:05 +0100)

committer Rosen Penev <rosenp@gmail.com>

Wed, 2 Feb 2022 15:24:59 +0000 (07:24 -0800)
author Josef Schlehofer <pepe.schlehofer@gmail.com>
Fri, 28 Jan 2022 16:05:28 +0000 (17:05 +0100)
committer Rosen Penev <rosenp@gmail.com>
Wed, 2 Feb 2022 15:24:59 +0000 (07:24 -0800)
diff --git a/net/apache/Makefile b/net/apache/Makefile

index d3c6d89a4c1896ba821e27485fba962f90ed3065..9a6c8815854ea33c77950ef86183f7358ed36f61 100644 (file)
--- a/net/apache/Makefile
+++ b/net/apache/Makefile
@@ -8,13 +8,13 @@
  include $(TOPDIR)/rules.mk
  
  PKG_NAME:=apache
-PKG_VERSION:=2.4.51
+PKG_VERSION:=2.4.52
  PKG_RELEASE:=1
  PKG_SOURCE_NAME:=httpd
  
  PKG_SOURCE:=$(PKG_SOURCE_NAME)-$(PKG_VERSION).tar.bz2
  PKG_SOURCE_URL:=@APACHE/httpd/
-PKG_HASH:=20e01d81fecf077690a4439e3969a9b22a09a8d43c525356e863407741b838f4
+PKG_HASH:=0127f7dc497e9983e9c51474bed75e45607f2f870a7675a86dc90af6d572f5c9
  
  PKG_BUILD_DIR:=$(BUILD_DIR)/$(PKG_SOURCE_NAME)-$(PKG_VERSION)
  
diff --git a/net/apache/patches/020-openssl-deprecated.patch b/net/apache/patches/020-openssl-deprecated.patch

index b9dcf57789f4947b30c5dca6b3fe10f44518604e..c4f600fa85e4deecb19fd017e68254eae182b759 100644 (file)
--- a/net/apache/patches/020-openssl-deprecated.patch
+++ b/net/apache/patches/020-openssl-deprecated.patch
@@ -1,6 +1,6 @@
  --- a/modules/md/md_crypt.c
  +++ b/modules/md/md_crypt.c
-@@ -1095,23 +1095,23 @@ const char *md_cert_get_serial_number(co
+@@ -1139,23 +1139,23 @@ const char *md_cert_get_serial_number(co
   
   int md_cert_is_valid_now(const md_cert_t *cert)
   {
@@ -42,7 +42,7 @@
                        "a newer library (%s, version currently loaded is %s)"
  --- a/modules/ssl/ssl_engine_io.c
  +++ b/modules/ssl/ssl_engine_io.c
-@@ -1280,9 +1280,9 @@ static apr_status_t ssl_io_filter_handsh
+@@ -1316,9 +1316,9 @@ static apr_status_t ssl_io_filter_handsh
           if (dc->proxy->ssl_check_peer_expire != FALSE) {
               if (!cert
                   || (X509_cmp_current_time(
@@ -56,7 +56,7 @@
                                 "SSL Proxy: Peer certificate is expired");
  --- a/modules/ssl/ssl_engine_log.c
  +++ b/modules/ssl/ssl_engine_log.c
-@@ -161,10 +161,10 @@ static void ssl_log_cert_error(const cha
+@@ -171,10 +171,10 @@ static void ssl_log_cert_error(const cha
                   BIO_puts(bio, "(ERROR)");
   
               BIO_puts(bio, " / notbefore: ");
@@ -90,7 +90,7 @@
       else if (*var && strcEQ(var+1, "_DN")) {
  --- a/modules/ssl/ssl_private.h
  +++ b/modules/ssl/ssl_private.h
-@@ -99,6 +99,9 @@
+@@ -102,6 +102,9 @@
   #include <openssl/x509v3.h>
   #include <openssl/x509_vfy.h>
   #include <openssl/ocsp.h>
author	Josef Schlehofer <pepe.schlehofer@gmail.com>
	Fri, 28 Jan 2022 16:05:28 +0000 (17:05 +0100)
committer	Rosen Penev <rosenp@gmail.com>
	Wed, 2 Feb 2022 15:24:59 +0000 (07:24 -0800)
net/apache/Makefile		patch \| blob \| history
net/apache/patches/020-openssl-deprecated.patch		patch \| blob \| history