| 1 | |
|---|
| 2 | ==== |
|---|
| 3 | NEWS |
|---|
| 4 | ==== |
|---|
| 5 | |
|---|
| 6 | - 1.5.0 - |
|---|
| 7 | * fixed decoding of common headers in AJP13 (#1399) |
|---|
| 8 | * disable experimental linux-aio and posix-aio support, use gthread-aio instead |
|---|
| 9 | * fixed several crashes in log-request-handling with %s being NULL on solaris |
|---|
| 10 | * fixed network-backend-solaris-sendfilev (EINVAL in writev()) |
|---|
| 11 | * fixed initgroups() called after chroot (#1384) |
|---|
| 12 | * execute fcgi app without /bin/sh if used as argument to spawn-fcgi (#1428) |
|---|
| 13 | * fix bug that rrdtool reports "0" for incoming data (#1514) |
|---|
| 14 | * ssl.cipher-list and ssl.use-sslv2 ported from 1.4.x (#1422) |
|---|
| 15 | * add IdleServers and Scoreboard directives in ?auto mode for mod_status (#1507) |
|---|
| 16 | * support letterhomes in mod_userdir (#1473) |
|---|
| 17 | * mod_auth ldap rework, most important change is being able to startup if ldap server is down (#1535) |
|---|
| 18 | * fixed ECONNRESET handling in network-openssl |
|---|
| 19 | * fixed log_write() for log-files > 4kbyte |
|---|
| 20 | * fix sending source of cgi script instead of 500 error if fork fails |
|---|
| 21 | * fix min-procs handling in mod_scgi.c, just set to max-procs (patch from #623) |
|---|
| 22 | * mod_cgi: add a event-handler for STDERR_FILENO and log it with ERROR() |
|---|
| 23 | * fixed building/testing outside of the src dir |
|---|
| 24 | * fix many (64-bit) format warnings and unsigned/signed compare warnings |
|---|
| 25 | * fixed out of range access in fd array (#1562, #372, #1603) (CVE-2008-0983) |
|---|
| 26 | * fix auth-ldap configuration in tests |
|---|
| 27 | * fcgi-stat-accel: Fix unused var / indentation |
|---|
| 28 | * fix mod_compress bug (#1027) |
|---|
| 29 | * fix ssl error queue handling (#285) (CVE-2008-1531) |
|---|
| 30 | * fix dependencies of the parser files in the Makefile |
|---|
| 31 | * fix server.kbytes-per-second (#1102) |
|---|
| 32 | * let spawn-fcgi propagate exit code from spawned fcgi application |
|---|
| 33 | * fix in/out statistics for connections |
|---|
| 34 | * close connection after redirect in trigger_b4_dl |
|---|
| 35 | * remove scons build system |
|---|
| 36 | * fix memory leak on windows (#1371) |
|---|
| 37 | * do not add Accept-Ranges header if range-request is disabled (#1449) |
|---|
| 38 | * mod_compress: match mime-type additionaly against the part before ";" (i.e. without encoding) |
|---|
| 39 | * fix bug with IPv6 in mod_evasive (#1579) |
|---|
| 40 | * fix mod_magnet: enable "request.method" and "request.protocol" in lighty.env (#1308) |
|---|
| 41 | * mod_magnet: set con->mode if content was generated so lighty doesn't append error messages. |
|---|
| 42 | * fix #1574: check for symlinks after successful pathinfo matching |
|---|
| 43 | * fix #1396: req-method OPTIONS: do not insert default response if request was denied |
|---|
| 44 | * fix server.max-keep-alive-requests handling |
|---|
| 45 | * reset physical.path after mod_magnet request restart |
|---|
| 46 | * fix mod-proxy-backend-http waiting for http body for 304 and 205 (#1178) |
|---|
| 47 | * fixed sock_addr reading in mod_cgi.c (#1672) |
|---|
| 48 | * fixed postgresql-vhost module to use all options (#1694) |
|---|
| 49 | * fixed #1565: mod_compress should check if the request is already handled, e.g. by fastcgi |
|---|
| 50 | * merged from @1874: add ETag configuration (#1442) |
|---|
| 51 | * case insensitive match for secdownload md5 token (#1710) |
|---|
| 52 | * handle only HEAD, GET and POST in mod_dirlisting (same as in staticfile) (#1687) |
|---|
| 53 | * fixed mod_webdav, litmus now passes everything except locks (#1738) |
|---|
| 54 | * fixed #1555: HTTP Request/Response only accept complete headers, i.e. ended with double CRLF |
|---|
| 55 | * fixed url encoding to encode more characters (#266) |
|---|
| 56 | * fixed dropping last character of evhost pattern (#161) |
|---|
| 57 | * Match headers case insensitive in response (removing of X-{Sendfile,LIGHTTPD-*}, catching Date/Server) |
|---|
| 58 | * fixed mem leak in ssi expression parser (#1753), thx Take5k |
|---|
| 59 | |
|---|
| 60 | - 1.5.0-r19.. - |
|---|
| 61 | * -F option added for spawn-fcgi |
|---|
| 62 | * replaced mod_fastcgi, mod_scgi, mod_proxy with mod_proxy_core + backends |
|---|
| 63 | * added query-string parsing for mod_uploadprogress |
|---|
| 64 | * added threaded stat() |
|---|
| 65 | * added threaded disk-read() support |
|---|
| 66 | * added dir-listing.set-footer in mod_dirlisting (#1277) |
|---|
| 67 | * added logging of the PID and UID of the sending process for SIGTERM and SIGINT |
|---|
| 68 | * added support for AJP13 to mod_proxy_core |
|---|
| 69 | * fixed the out-of-fd support |
|---|
| 70 | * fixed crash in mod_expire if 'modification' is used and stat() failed (#1063) |
|---|
| 71 | * fixed hardcoded font-sizes in mod_dirlisting (#1267) |
|---|
| 72 | * fixed different ETag length on 32/64 platforms (#1279) |
|---|
| 73 | * fixed conditional dir-listing.exclude (#930) |
|---|
| 74 | * fixed CONTENT_LENGTH = -1 in mod_cgi (#1276) |
|---|
| 75 | * fixed typecast of NULL on execl() (#1235) |
|---|
| 76 | * fixed extra Content-Length header on 1xx, 204 and 304 (#1002) |
|---|
| 77 | * fixed mysql server reconnects (#518) |
|---|
| 78 | * fixed prctl() usage (#1310, #1333) |
|---|
| 79 | * fixed FastCGI header overrun in mod_fastcgi (reported by mattias@secweb.se) |
|---|
| 80 | * fixed mem-leak in mod_auth (reported by Stefan Esser) |
|---|
| 81 | * fixed crash with md5-sess and cnonce not set in mod_auth (reported by Stefan Esser) |
|---|
| 82 | * fixed missing check for base64 encoded string in mod_auth and Basic auth |
|---|
| 83 | (reported by Stefan Esser) |
|---|
| 84 | * fixed possible crash in Auth-Digest header parser on trailing WS in |
|---|
| 85 | mod_auth (reported by Stefan Esser) |
|---|
