Wed, 20 Nov 2019 14:51:54 UTC | login

Information for build httpd24-httpd-2.4.12-5.el6

ID7877
Package Namehttpd24-httpd
Version2.4.12
Release5.el6
Epoch
SummaryApache HTTP Server
DescriptionThe Apache HTTP Server is a powerful, efficient, and extensible web server.
Built byhhorak
State complete
Volume DEFAULT
StartedFri, 20 Nov 2015 08:17:44 UTC
CompletedFri, 20 Nov 2015 08:23:12 UTC
Taskbuild (sclo6-httpd24-rh-el6, httpd24-httpd-2.4.12-5.el6.src.rpm)
Tags
sclo6-httpd24-rh-candidate
sclo6-httpd24-rh-testing
RPMs
src
httpd24-httpd-2.4.12-5.el6.src.rpm (info) (download)
noarch
httpd24-httpd-manual-2.4.12-5.el6.noarch.rpm (info) (download)
x86_64
httpd24-httpd-2.4.12-5.el6.x86_64.rpm (info) (download)
httpd24-httpd-devel-2.4.12-5.el6.x86_64.rpm (info) (download)
httpd24-httpd-tools-2.4.12-5.el6.x86_64.rpm (info) (download)
httpd24-mod_ldap-2.4.12-5.el6.x86_64.rpm (info) (download)
httpd24-mod_proxy_html-2.4.12-5.el6.x86_64.rpm (info) (download)
httpd24-mod_session-2.4.12-5.el6.x86_64.rpm (info) (download)
httpd24-mod_ssl-2.4.12-5.el6.x86_64.rpm (info) (download)
httpd24-httpd-debuginfo-2.4.12-5.el6.x86_64.rpm (info) (download)
Logs
x86_64
build.log
state.log
root.log
Changelog * Tue Aug 11 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.12-5 - core: fix chunk header parsing defect (CVE-2015-3183) - core: replace of ap_some_auth_required with ap_some_authn_required and ap_force_authn hook (CVE-2015-3185) - core: fix pointer dereference crash with ErrorDocument 400 pointing to a local URL-path (CVE-2015-0253) - mod_lua: fix possible mod_lua crash due to websocket bug (CVE-2015-0228) * Thu Mar 05 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.12-4 - remove old sslsninotreq patch (#1199040) * Thu Feb 26 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.12-3 - fix wrong path to document root in httpd.conf (#1196559) * Mon Feb 02 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.12-2 - rebuild against new APR/APR-util (#1187646) * Wed Jan 28 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.12-1 - update to version 2.4.12 - fix possible crash in SIGINT handling (#1184034) - fix return value of httpd init script when lockfile exists, but httpd is not running (#1184441) * Thu Jan 08 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-2 - enable mod_request by default for mod_auth_form - move disabled-by-default modules from 00-base.conf to 00-optional.conf * Fri Jan 02 2015 Jan Kaluza <jkaluza@redhat.com> - 2.4.10-1 - update to 2.4.10 - fix return value of htcacheclean init script when lockfile exists, but htcacheclean is not running (#1092067) - use proper SELinux context for initscripts (#1093039) - remove mod_proxy_html obsolete (#1174790) - remove dbmmanage from httpd-tools (#1151375) - add slash before root_libexecdir macro (#1149076) - ab: fix integer overflow when printing stats with lot of requests (#1091650) - mod_ssl: use 2048-bit RSA key with SHA-256 signature in dummy certificate (#1079925) * Tue Nov 25 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-22 - Remove mod_proxy_fcgi fix for heap-based buffer overflow, httpd-2.4.6 is not affected (CVE-2014-3583) * Tue Nov 25 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-21 - mod_proxy_wstunnel: Fix the use of SSL with the "wss:" scheme (#1141950) * Mon Nov 24 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-20 - core: fix bypassing of mod_headers rules via chunked requests (CVE-2013-5704) - mod_cache: fix NULL pointer dereference on empty Content-Type (CVE-2014-3581) - mod_proxy_fcgi: fix heap-based buffer overflow (CVE-2014-3583) * Fri Jul 18 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-19 - mod_cgid: add security fix for CVE-2014-0231 - mod_proxy: add security fix for CVE-2014-0117 - mod_deflate: add security fix for CVE-2014-0118 - mod_status: add security fix for CVE-2014-0226 - mod_cache: add secutiry fix for CVE-2013-4352 * Tue Mar 25 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-16 - apachectl status: return exit code 3 when httpd is not running (#1077334) * Thu Mar 20 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-15 - mod_dav: add security fix for CVE-2013-6438 (#1077885) - mod_log_config: add security fix for CVE-2014-0098 (#1077885) * Wed Feb 05 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-14 - add htcacheclean init script (#1061009) - mod_dav: fix locktoken handling (#1061010) - mod_ssl: sanity-check use of "SSLCompression" (#1061011) - mod_ssl: allow SSLEngine to override Listen-based default (#1061016) * Wed Feb 05 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-13 - don't run posttrans restart if httpd-disable-posttrans exists (#1047097) * Wed Jan 15 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-12 - call restorecon in post script (#1052933) * Thu Jan 09 2014 Joe Orton <jorton@redhat.com> - 2.4.6-11 - mod_ssl: enable support at run-time for TLSv1.x with newer OpenSSL (#1035371) * Tue Jan 07 2014 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-10 - don't run posttrans restart if httpd-disable-posttrans exists (#1047097) - mod_proxy: fix crash in brigade cleanup under high load (#1040448) - remove "webserver" from provides (#1042877) * Wed Nov 27 2013 Joe Orton <jorton@redhat.com> - 2.4.6-9 - rebuild * Tue Nov 26 2013 Joe Orton <jorton@redhat.com> - 2.4.6-7 - mod_ssl post script fixes - use system /var/log for logging * Tue Nov 12 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-6 - enable collections from service-environment file in init script * Wed Sep 25 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-5 - do not use capabilities in RHEL6 * Mon Sep 23 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-4 - fix logrotate postrotate script * Wed Sep 18 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-3 - rebuild for new APR/APR-util * Tue Aug 13 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.6-2 - update to 2.4.6 - revert fix for dumping vhosts twice * Mon Jul 29 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-7 - use expanded directory variables in macros, remove '-' from mmnisa * Mon Jul 29 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-6 - when building as SCL, use _httpd24_ prefix for macros * Thu Jul 11 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-12 - mod_unique_id: replace use of hostname + pid with PRNG output (#976666) - apxs: mention -p option in manpage * Tue Jul 02 2013 Joe Orton <jorton@redhat.com> - 2.4.4-11 - add patch for aarch64 (Dennis Gilmore, #925558) * Mon Jul 01 2013 Joe Orton <jorton@redhat.com> - 2.4.4-10 - remove duplicate apxs man page from httpd-tools * Mon Jun 17 2013 Joe Orton <jorton@redhat.com> - 2.4.4-9 - remove zombie dbmmanage script * Fri May 31 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-8 - return 400 Bad Request on malformed Host header * Mon May 20 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-6 - htpasswd/htdbm: fix hash generation bug (#956344) - do not dump vhosts twice in httpd -S output (#928761) - mod_cache: fix potential crash caused by uninitialized variable (#954109) * Thu Apr 18 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-5 - execute systemctl reload as result of apachectl graceful - mod_ssl: ignore SNI hints unless required by config - mod_cache: forward-port CacheMaxExpire "hard" option - mod_ssl: fall back on another module's proxy hook if mod_ssl proxy is not configured. * Tue Apr 16 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-4 - fix service file to not send SIGTERM after ExecStop (#906321, #912288) * Tue Mar 26 2013 Jan Kaluza <jkaluza@redhat.com> - 2.4.4-3 - protect MIMEMagicFile with IfModule (#893949) * Tue Feb 26 2013 Joe Orton <jorton@redhat.com> - 2.4.4-2 - really package mod_auth_form in mod_session (#915438) * Tue Feb 26 2013 Joe Orton <jorton@redhat.com> - 2.4.4-1 - update to 2.4.4 - fix duplicate ownership of mod_session config (#914901) * Fri Feb 22 2013 Joe Orton <jorton@redhat.com> - 2.4.3-17 - add mod_session subpackage, move mod_auth_form there (#894500) * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.3-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Jan 08 2013 Joe Orton <jorton@redhat.com> - 2.4.3-15 - add systemd service for htcacheclean * Tue Nov 13 2012 Joe Orton <jorton@redhat.com> - 2.4.3-14 - drop patch for r1344712 * Tue Nov 13 2012 Joe Orton <jorton@redhat.com> - 2.4.3-13 - filter mod_*.so auto-provides (thanks to rcollet) - pull in syslog logging fix from upstream (r1344712) * Fri Oct 26 2012 Joe Orton <jorton@redhat.com> - 2.4.3-12 - rebuild to pick up new apr-util-ldap * Tue Oct 23 2012 Joe Orton <jorton@redhat.com> - 2.4.3-11 - rebuild * Wed Oct 03 2012 Joe Orton <jorton@redhat.com> - 2.4.3-10 - pull upstream patch r1392850 in addition to r1387633 * Mon Oct 01 2012 Joe Orton <jorton@redhat.com> - 2.4.3-9.1 - restore "ServerTokens Full-Release" support (#811714) * Mon Oct 01 2012 Joe Orton <jorton@redhat.com> - 2.4.3-9 - define PLATFORM in os.h using vendor string * Mon Oct 01 2012 Joe Orton <jorton@redhat.com> - 2.4.3-8 - use systemd script unconditionally (#850149) * Mon Oct 01 2012 Joe Orton <jorton@redhat.com> - 2.4.3-7 - use systemd scriptlets if available (#850149) - don't run posttrans restart if /etc/sysconfig/httpd-disable-posttrans exists * Mon Oct 01 2012 Jan Kaluza <jkaluza@redhat.com> - 2.4.3-6 - use systemctl from apachectl (#842736) * Wed Sep 19 2012 Joe Orton <jorton@redhat.com> - 2.4.3-5 - fix some error log spam with graceful-stop (r1387633) - minor mod_systemd tweaks * Thu Sep 13 2012 Joe Orton <jorton@redhat.com> - 2.4.3-4 - use IncludeOptional for conf.d/*.conf inclusion * Fri Sep 07 2012 Jan Kaluza <jkaluza@redhat.com> - 2.4.3-3 - adding mod_systemd to integrate with systemd better * Tue Aug 21 2012 Joe Orton <jorton@redhat.com> - 2.4.3-2 - mod_ssl: add check for proxy keypair match (upstream r1374214) * Tue Aug 21 2012 Joe Orton <jorton@redhat.com> - 2.4.3-1 - update to 2.4.3 (#849883) - own the docroot (#848121) * Mon Aug 06 2012 Joe Orton <jorton@redhat.com> - 2.4.2-23 - add mod_proxy fixes from upstream (r1366693, r1365604) * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.4.2-22 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jul 06 2012 Joe Orton <jorton@redhat.com> - 2.4.2-21 - drop explicit version requirement on initscripts * Thu Jul 05 2012 Joe Orton <jorton@redhat.com> - 2.4.2-20 - mod_ext_filter: fix error_log warnings * Mon Jul 02 2012 Joe Orton <jorton@redhat.com> - 2.4.2-19 - support "configtest" and "graceful" as initscripts "legacy actions" * Fri Jun 08 2012 Joe Orton <jorton@redhat.com> - 2.4.2-18 - avoid use of "core" GIF for a "core" directory (#168776) - drop use of "syslog.target" in systemd unit file * Thu Jun 07 2012 Joe Orton <jorton@redhat.com> - 2.4.2-17 - use _unitdir for systemd unit file - use /run in unit file, ssl.conf * Thu Jun 07 2012 Joe Orton <jorton@redhat.com> - 2.4.2-16 - mod_ssl: fix NPN patch merge * Wed Jun 06 2012 Joe Orton <jorton@redhat.com> - 2.4.2-15 - move tmpfiles.d fragment into /usr/lib per new guidelines - package /run/httpd not /var/run/httpd - set runtimedir to /run/httpd likewise * Wed Jun 06 2012 Joe Orton <jorton@redhat.com> - 2.4.2-14 - fix htdbm/htpasswd crash on crypt() failure (#818684) * Wed Jun 06 2012 Joe Orton <jorton@redhat.com> - 2.4.2-13 - pull fix for NPN patch from upstream (r1345599) * Thu May 31 2012 Joe Orton <jorton@redhat.com> - 2.4.2-12 - update suexec patch to use LOG_AUTHPRIV facility * Thu May 24 2012 Joe Orton <jorton@redhat.com> - 2.4.2-11 - really fix autoindex.conf (thanks to remi@) * Thu May 24 2012 Joe Orton <jorton@redhat.com> - 2.4.2-10 - fix autoindex.conf to allow symlink to poweredby.png * Wed May 23 2012 Joe Orton <jorton@redhat.com> - 2.4.2-9 - suexec: use upstream version of patch for capability bit support * Wed May 23 2012 Joe Orton <jorton@redhat.com> - 2.4.2-8 - suexec: use syslog rather than suexec.log, drop dac_override capability * Tue May 01 2012 Joe Orton <jorton@redhat.com> - 2.4.2-7 - mod_ssl: add TLS NPN support (r1332643, #809599) * Tue May 01 2012 Joe Orton <jorton@redhat.com> - 2.4.2-6 - add BR on APR >= 1.4.0 * Fri Apr 27 2012 Joe Orton <jorton@redhat.com> - 2.4.2-5 - use systemctl from logrotate (#221073) * Fri Apr 27 2012 Joe Orton <jorton@redhat.com> - 2.4.2-4 - pull from upstream: * use TLS close_notify alert for dummy_connection (r1326980+) * cleanup symbol exports (r1327036+) * Fri Apr 27 2012 Joe Orton <jorton@redhat.com> - 2.4.2-3.2 - rebuild * Fri Apr 20 2012 Joe Orton <jorton@redhat.com> - 2.4.2-3 - really fix restart * Fri Apr 20 2012 Joe Orton <jorton@redhat.com> - 2.4.2-2 - tweak default ssl.conf - fix restart handling (#814645) - use graceful restart by default * Wed Apr 18 2012 Jan Kaluza <jkaluza@redhat.com> - 2.4.2-1 - update to 2.4.2 * Fri Mar 23 2012 Joe Orton <jorton@redhat.com> - 2.4.1-6 - fix macros * Fri Mar 23 2012 Joe Orton <jorton@redhat.com> - 2.4.1-5 - add _httpd_moddir to macros * Tue Mar 13 2012 Joe Orton <jorton@redhat.com> - 2.4.1-4 - fix symlink for poweredby.png - fix manual.conf * Tue Mar 13 2012 Joe Orton <jorton@redhat.com> - 2.4.1-3 - add mod_proxy_html subpackage (w/mod_proxy_html + mod_xml2enc) - move mod_ldap, mod_authnz_ldap to mod_ldap subpackage * Tue Mar 13 2012 Joe Orton <jorton@redhat.com> - 2.4.1-2 - clean docroot better - ship proxy, ssl directories within /var/cache/httpd - default config: * unrestricted access to (only) /var/www * remove (commented) Mutex, MaxRanges, ScriptSock * split autoindex config to conf.d/autoindex.conf - ship additional example configs in docdir * Tue Mar 06 2012 Joe Orton <jorton@redhat.com> - 2.4.1-1 - update to 2.4.1 - adopt upstream default httpd.conf (almost verbatim) - split all LoadModules to conf.modules.d/*.conf - include conf.d/*.conf at end of httpd.conf - trim %changelog * Mon Feb 13 2012 Joe Orton <jorton@redhat.com> - 2.2.22-2 - fix build against PCRE 8.30 * Mon Feb 13 2012 Joe Orton <jorton@redhat.com> - 2.2.22-1 - update to 2.2.22 * Fri Feb 10 2012 Petr Pisar <ppisar@redhat.com> - 2.2.21-8 - Rebuild against PCRE 8.30 * Mon Jan 23 2012 Jan Kaluza <jkaluza@redhat.com> - 2.2.21-7 - fix #783629 - start httpd after named * Mon Jan 16 2012 Joe Orton <jorton@redhat.com> - 2.2.21-6 - complete conversion to systemd, drop init script (#770311) - fix comments in /etc/sysconfig/httpd (#771024) - enable PrivateTmp in service file (#781440) - set LANG=C in /etc/sysconfig/httpd * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.2.21-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Dec 06 2011 Jan Kaluza <jkaluza@redhat.com> - 2.2.21-4 - fix #751591 - start httpd after remote-fs * Mon Oct 24 2011 Jan Kaluza <jkaluza@redhat.com> - 2.2.21-3 - allow change state of BalancerMember in mod_proxy_balancer web interface * Thu Sep 22 2011 Ville Skyttä <ville.skytta@iki.fi> - 2.2.21-2 - Make mmn available as %{_httpd_mmn}. - Add .svgz to AddEncoding x-gzip example in httpd.conf. * Tue Sep 13 2011 Joe Orton <jorton@redhat.com> - 2.2.21-1 - update to 2.2.21 * Mon Sep 05 2011 Joe Orton <jorton@redhat.com> - 2.2.20-1 - update to 2.2.20 - fix MPM stub man page generation * Wed Aug 10 2011 Jan Kaluza <jkaluza@redhat.com> - 2.2.19-5 - fix #707917 - add httpd-ssl-pass-dialog to ask for SSL password using systemd * Fri Jul 22 2011 Iain Arnell <iarnell@gmail.com> 1:2.2.19-4 - rebuild while rpm-4.9.1 is untagged to remove trailing slash in provided directory names * Wed Jul 20 2011 Jan Kaluza <jkaluza@redhat.com> - 2.2.19-3 - fix #716621 - suexec now works without setuid bit * Thu Jul 14 2011 Jan Kaluza <jkaluza@redhat.com> - 2.2.19-2 - fix #689091 - backported patch from 2.3 branch to support IPv6 in logresolve * Fri Jul 01 2011 Joe Orton <jorton@redhat.com> - 2.2.19-1 - update to 2.2.19 - enable dbd, authn_dbd in default config * Thu Apr 14 2011 Joe Orton <jorton@redhat.com> - 2.2.17-13 - fix path expansion in service files * Tue Apr 12 2011 Joe Orton <jorton@redhat.com> - 2.2.17-12 - add systemd service files (#684175, thanks to Jóhann B. Guðmundsson) * Wed Mar 23 2011 Joe Orton <jorton@redhat.com> - 2.2.17-11 - minor updates to httpd.conf - drop old patches * Wed Mar 02 2011 Joe Orton <jorton@redhat.com> - 2.2.17-10 - rebuild * Wed Feb 23 2011 Joe Orton <jorton@redhat.com> - 2.2.17-9 - use arch-specific mmn * Wed Feb 09 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.2.17-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Mon Jan 31 2011 Joe Orton <jorton@redhat.com> - 2.2.17-7 - generate dummy mod_ssl cert with CA:FALSE constraint (#667841) - add man page stubs for httpd.event, httpd.worker - drop distcache support - add STOP_TIMEOUT support to init script * Sat Jan 08 2011 Joe Orton <jorton@redhat.com> - 2.2.17-6 - update default SSLCipherSuite per upstream trunk * Wed Jan 05 2011 Joe Orton <jorton@redhat.com> - 2.2.17-5 - fix requires (#667397) * Wed Jan 05 2011 Joe Orton <jorton@redhat.com> - 2.2.17-4 - de-ghost /var/run/httpd * Tue Jan 04 2011 Joe Orton <jorton@redhat.com> - 2.2.17-3 - add tmpfiles.d configuration, ghost /var/run/httpd (#656600) * Sat Nov 20 2010 Joe Orton <jorton@redhat.com> - 2.2.17-2 - drop setuid bit, use capabilities for suexec binary * Wed Oct 27 2010 Joe Orton <jorton@redhat.com> - 2.2.17-1 - update to 2.2.17 * Fri Sep 10 2010 Joe Orton <jorton@redhat.com> - 2.2.16-2 - link everything using -z relro and -z now * Mon Jul 26 2010 Joe Orton <jorton@redhat.com> - 2.2.16-1 - update to 2.2.16 * Fri Jul 09 2010 Joe Orton <jorton@redhat.com> - 2.2.15-3 - default config tweaks: * harden httpd.conf w.r.t. .htaccess restriction (#591293) * load mod_substitute, mod_version by default * drop proxy_ajp.conf, load mod_proxy_ajp in httpd.conf * add commented list of shipped-but-unloaded modules * bump up worker defaults a little * drop KeepAliveTimeout to 5 secs per upstream - fix LSB compliance in init script (#522074) - bundle NOTICE in -tools - use init script in logrotate postrotate to pick up PIDFILE - drop some old Obsoletes/Conflicts * Sun Apr 04 2010 Robert Scheck <robert@fedoraproject.org> - 2.2.15-1 - update to 2.2.15 (#572404, #579311)