commit | 64bed1e821c6b93586d2faca4dfd893875c456b5 | [log] [tgz] |
---|---|---|
author | Justin Erenkrantz <jerenkrantz@apache.org> | Wed May 28 04:45:46 2003 +0000 |
committer | Justin Erenkrantz <jerenkrantz@apache.org> | Wed May 28 04:45:46 2003 +0000 |
tree | ba5b64b655367d309f786a08bac116587d8b1567 | |
parent | e23ad2ae3f0929ed20cd514a949826e63f09d303 [diff] |
SECURITY [httpd incident CAN-2003-0189] Address a thread safety issue with apr_password_validate() on AIX, Linux, Mac OS X, and possibly other platforms. We didn't move the crypt_r checks from apr to apr-util when we moved apr_password_validate. Add testpass.c to ensure we don't regress. CVE: CAN-2003-0189 Reviewed by: Justin, Jim, Jeff git-svn-id: https://svn.apache.org/repos/asf/apr/apr-util/trunk@58900 13f79535-47bb-0310-9956-ffa450edef68