From owner-freebsd-apache@FreeBSD.ORG  Wed May 12 22:00:15 2010
Return-Path: <owner-freebsd-apache@FreeBSD.ORG>
Delivered-To: apache@hub.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id AFFEF106564A
	for <apache@hub.freebsd.org>; Wed, 12 May 2010 22:00:15 +0000 (UTC)
	(envelope-from gnats@FreeBSD.org)
Received: from freefall.freebsd.org (unknown [IPv6:2001:4f8:fff6::28])
	by mx1.freebsd.org (Postfix) with ESMTP id A0B5D8FC0C
	for <apache@hub.freebsd.org>; Wed, 12 May 2010 22:00:15 +0000 (UTC)
Received: from freefall.freebsd.org (localhost [127.0.0.1])
	by freefall.freebsd.org (8.14.4/8.14.4) with ESMTP id o4CM0FFP004852
	for <apache@freefall.freebsd.org>; Wed, 12 May 2010 22:00:15 GMT
	(envelope-from gnats@freefall.freebsd.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.14.4/8.14.4/Submit) id o4CM0FMD004851;
	Wed, 12 May 2010 22:00:15 GMT (envelope-from gnats)
Date: Wed, 12 May 2010 22:00:15 GMT
Message-Id: <201005122200.o4CM0FMD004851@freefall.freebsd.org>
To: apache@FreeBSD.org
From: Benno Overeinder <benno@NLnetLabs.nl>
Cc: 
Subject: Re: ports/146393: www/apache20: apache-2.0.63_8 can't start
X-BeenThere: freebsd-apache@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: Benno Overeinder <benno@NLnetLabs.nl>
List-Id: Support of apache-related ports  <freebsd-apache.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-apache>, 
	<mailto:freebsd-apache-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-apache>
List-Post: <mailto:freebsd-apache@freebsd.org>
List-Help: <mailto:freebsd-apache-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-apache>,
	<mailto:freebsd-apache-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 12 May 2010 22:00:15 -0000

The following reply was made to PR ports/146393; it has been noted by GNATS.

From: Benno Overeinder <benno@NLnetLabs.nl>
To: bug-followup@FreeBSD.org, stb@lassitu.de
Cc:  
Subject: Re: ports/146393: www/apache20: apache-2.0.63_8 can't start
Date: Wed, 12 May 2010 23:53:21 +0200

 Same problem here.  After some searchig after mySrvFromConn, and
 checking with the original Apache 2.0.63 sources, I figured out it must
 be in the patches of the port.  Indeed, in
 www/apache20/files/patch-CVE-2009-3555 there is the code injecting the
 line "s = mySrvFromConn(c);".
 
 According to the header, it is:
 "Modified patch from
 http://www.apache.org/dist/httpd/patches/apply_to_2.2.14/CVE-2009-3555-2.2.patch".
 
 In the original apache2.0.63 code there is no reference to
 mySrvFromConn, and in the other port patches I cannot find any line
 defining mySrvFromConn.  Is this a partial backport of CVE-2009-3555?
 
 Cheers,
 
 -- Benno