You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by co...@apache.org on 2023/03/05 21:12:34 UTC

svn commit: r1908100 - in /httpd/httpd/branches/2.4.x: ./ changes-entries/

Author: covener
Date: Sun Mar  5 21:12:34 2023
New Revision: 1908100

URL: http://svn.apache.org/viewvc?rev=1908100&view=rev
Log:
make update-changes

[skip ci]

Removed:
    httpd/httpd/branches/2.4.x/changes-entries/ajp_invalid_number_of_headers.txt
    httpd/httpd/branches/2.4.x/changes-entries/h2-rst-access-500-fix.txt
    httpd/httpd/branches/2.4.x/changes-entries/md_v2.4.21.txt
    httpd/httpd/branches/2.4.x/changes-entries/pr66421.txt
    httpd/httpd/branches/2.4.x/changes-entries/proxy_uwsgi_response_validation.txt
    httpd/httpd/branches/2.4.x/changes-entries/rotatlogs_truncate_rotated.txt
Modified:
    httpd/httpd/branches/2.4.x/CHANGES

Modified: httpd/httpd/branches/2.4.x/CHANGES
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?rev=1908100&r1=1908099&r2=1908100&view=diff
==============================================================================
--- httpd/httpd/branches/2.4.x/CHANGES [utf-8] (original)
+++ httpd/httpd/branches/2.4.x/CHANGES [utf-8] Sun Mar  5 21:12:34 2023
@@ -1,6 +1,34 @@
                                                          -*- coding: utf-8 -*-
 Changes with Apache 2.4.56
 
+  *) rotatelogs: Add -T flag to allow subsequent rotated logfiles to be
+     truncated without the initial logfile being truncated.  [Eric Covener]
+
+  *) mod_ldap: LDAPConnectionPoolTTL should accept negative values in order to
+     allow connections of any age to be reused. Up to now, a negative value
+     was handled as an error when parsing the configuration file.  PR 66421.
+     [nailyk <bzapache nailyk.fr>, Christophe Jaillet]
+
+  *) mod_proxy_ajp: Report an error if the AJP backend sends an invalid number
+     of headers. [Ruediger Pluem]
+
+  *) mod_md:
+     - Enabling ED25519 support and certificate transparency information when
+       building with libressl v3.5.0 and newer. Thanks to Giovanni Bechis.
+     - MDChallengeDns01 can now be configured for individual domains.
+       Thanks to Jérôme Billiras (@bilhackmac) for the initial PR.
+     - Fixed a bug found by Jérôme Billiras (@bilhackmac) that caused the challenge
+       teardown not being invoked as it should.
+     [Stefan Eissing]
+
+  *) mod_http2: client resets of HTTP/2 streams led to unwanted 500 errors
+     reported in access logs and error documents. The processing of the
+     reset was correct, only unneccesary reporting was caused.
+     [Stefan Eissing]
+
+  *) mod_proxy_uwsgi: Stricter backend HTTP response parsing/validation.
+     [Yann Ylavic]
+
 Changes with Apache 2.4.55
 
   *) SECURITY: CVE-2022-37436: Apache HTTP Server: mod_proxy prior to