pali pushed to cherokee (el6). "Resolves bz 1114461 - CVE-2014-4668 cherokee: authentication bypass when LDAP server allows unauthenticated binds (..more)"
notifications at fedoraproject.org
notifications at fedoraproject.org
Wed Apr 15 20:47:06 UTC 2015
>From 0859392dc16774b99cd32da4e3415e11adf3f5a6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Pavel=20Lis=C3=BD?= <pali at fedoraproject.org>
Date: Wed, 15 Apr 2015 22:46:19 +0200
Subject: Resolves bz 1114461 - CVE-2014-4668 cherokee: authentication bypass
when LDAP server allows unauthenticated binds
- Resolves bz 1094901 - cherokee: script and/or trigger should not directly enable systemd units
- Resolves bz 959170 - cherokee-worker and cherokee-admin want to use execstack (EL5)
diff --git a/.gitignore b/.gitignore
index c32ad55..513bcc0 100644
--- a/.gitignore
+++ b/.gitignore
@@ -10,3 +10,4 @@ openssl-1.0.0d.tar.gz
/cherokee-1.2.101.tar.gz
/cherokee-1.2.103.tar.gz
/openssl-1.0.0r.tar.gz
+/cherokee-1.2.103_CVE-2014-4668.patch
diff --git a/sources b/sources
index d247e58..19f5721 100644
--- a/sources
+++ b/sources
@@ -1 +1,3 @@
+527b3de97ef9727bfd5f6832043cf916 cherokee-1.2.103.tar.gz
ea48d0ad53e10f06a9475d8cdc209dfa openssl-1.0.0r.tar.gz
+154fd9550e702430b3ccdf257a7c9edd cherokee-1.2.103_CVE-2014-4668.patch
--
cgit v0.10.2
http://pkgs.fedoraproject.org/cgit/cherokee.git/commit/?h=el6&id=0859392dc16774b99cd32da4e3415e11adf3f5a6
More information about the scm-commits
mailing list