Bug Fix Advisory httpd bug fix and enhancement update

Advisory: RHBA-2008:0763-3
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2008-07-24
Last updated on: 2008-07-24
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
OVAL: N/A

Details

Updated httpd packages that fix several bugs and add various enhancements
are now available.

The Apache HTTP Server is a popular and freely-available Web server.

These updated httpd packages provide fixes for the following bugs:

* the removal of an upper limit on the configured LimitRequestFieldSize
setting.

* the removal of a restriction (the OPTIONS request) in the set of methods
which can be handled by a CGI script.

* the request method is escaped in the built-in HTTP error responses.

In addition, these updated packages provide the following enhancements:

* the addition of the "htcacheclean" cache storage management tool.

* support for filtering of responses based on the Content-Type in a reverse
proxy configuration

* directives such as the CacheSize directive, which are not implemented in
mod_disk_cache, now provoke warnings indicating that they are not available.

Users are advised to upgrade to these updated httpd packages, which resolve
these issues and add these enhancements.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Desktop (v. 4)
SRPMS:
httpd-2.0.52-41.ent.src.rpm     2f1f4190df450eb755409da78ccabac1
 
IA-32:
httpd-2.0.52-41.ent.i386.rpm     1c3e160e79ca3493c1b3eb5a03d49e0b
httpd-devel-2.0.52-41.ent.i386.rpm     a5a3da837e31f07a27fb6d61ddda552b
httpd-manual-2.0.52-41.ent.i386.rpm     e97428d22bd8f6779e82a68b3c263aff
httpd-suexec-2.0.52-41.ent.i386.rpm     30c2c69512bfd093f8b52f3c1deaf3bd
mod_ssl-2.0.52-41.ent.i386.rpm     f8250722e5d1c9b9ce9b932dcaa22d20
 
x86_64:
httpd-2.0.52-41.ent.x86_64.rpm     f9bbbf1060967bf42108ffb2a417b274
httpd-devel-2.0.52-41.ent.x86_64.rpm     a775ad695123a40133bf6cc5964cd0e4
httpd-manual-2.0.52-41.ent.x86_64.rpm     7db249d1e320eea7f8f72ce14689069b
httpd-suexec-2.0.52-41.ent.x86_64.rpm     36a484b6a159e62c5297084d0065350c
mod_ssl-2.0.52-41.ent.x86_64.rpm     55a7f92ad41f9eadd584d92599b9f06d
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
httpd-2.0.52-41.ent.src.rpm     2f1f4190df450eb755409da78ccabac1
 
IA-32:
httpd-2.0.52-41.ent.i386.rpm     1c3e160e79ca3493c1b3eb5a03d49e0b
httpd-devel-2.0.52-41.ent.i386.rpm     a5a3da837e31f07a27fb6d61ddda552b
httpd-manual-2.0.52-41.ent.i386.rpm     e97428d22bd8f6779e82a68b3c263aff
httpd-suexec-2.0.52-41.ent.i386.rpm     30c2c69512bfd093f8b52f3c1deaf3bd
mod_ssl-2.0.52-41.ent.i386.rpm     f8250722e5d1c9b9ce9b932dcaa22d20
 
IA-64:
httpd-2.0.52-41.ent.ia64.rpm     bc792441928dc0d02eeecd3a2f6aa8fb
httpd-devel-2.0.52-41.ent.ia64.rpm     65dde72aac91610e449740d2146567bb
httpd-manual-2.0.52-41.ent.ia64.rpm     0380f3494ddb987056da31b71d81f3de
httpd-suexec-2.0.52-41.ent.ia64.rpm     8a4114f9ed2eb71be4db73229730a678
mod_ssl-2.0.52-41.ent.ia64.rpm     120d53f1c4a434c1ee7271f04c3a417b
 
PPC:
httpd-2.0.52-41.ent.ppc.rpm     87dfc2c460a778cb7d1f269aa16882db
httpd-devel-2.0.52-41.ent.ppc.rpm     8401d21a9278433a727641e2f2a30a7c
httpd-manual-2.0.52-41.ent.ppc.rpm     b0933f5c716b1416145ab721f08552fa
httpd-suexec-2.0.52-41.ent.ppc.rpm     419c8e181f9947e42126085bf1934b5b
mod_ssl-2.0.52-41.ent.ppc.rpm     8b7d2b9f5a6f0274a07643fda5a1d891
 
s390:
httpd-2.0.52-41.ent.s390.rpm     87a74d42ba177a31f1e8e0223eab9ab0
httpd-devel-2.0.52-41.ent.s390.rpm     deea5485cd8832701e6a03569ec40c36
httpd-manual-2.0.52-41.ent.s390.rpm     9b20133fc44d6d87ea242905516d71dd
httpd-suexec-2.0.52-41.ent.s390.rpm     000fb9adeaad3df20f2788e8a717a44c
mod_ssl-2.0.52-41.ent.s390.rpm     d92c9d672c88a8b92d776b43b616bb6c
 
s390x:
httpd-2.0.52-41.ent.s390x.rpm     f7dafdd7f8559b2332226332082944fe
httpd-devel-2.0.52-41.ent.s390x.rpm     12ecbed51a52fccb69f6b9e34dfc558a
httpd-manual-2.0.52-41.ent.s390x.rpm     024e1b6e853c155d4b666d118e44260d
httpd-suexec-2.0.52-41.ent.s390x.rpm     2478079a2dfc2c08dbb06a1851b4404d
mod_ssl-2.0.52-41.ent.s390x.rpm     27de6f4ef975c0f15968a47657177a3f
 
x86_64:
httpd-2.0.52-41.ent.x86_64.rpm     f9bbbf1060967bf42108ffb2a417b274
httpd-devel-2.0.52-41.ent.x86_64.rpm     a775ad695123a40133bf6cc5964cd0e4
httpd-manual-2.0.52-41.ent.x86_64.rpm     7db249d1e320eea7f8f72ce14689069b
httpd-suexec-2.0.52-41.ent.x86_64.rpm     36a484b6a159e62c5297084d0065350c
mod_ssl-2.0.52-41.ent.x86_64.rpm     55a7f92ad41f9eadd584d92599b9f06d
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
httpd-2.0.52-41.ent.src.rpm     2f1f4190df450eb755409da78ccabac1
 
IA-32:
httpd-2.0.52-41.ent.i386.rpm     1c3e160e79ca3493c1b3eb5a03d49e0b
httpd-devel-2.0.52-41.ent.i386.rpm     a5a3da837e31f07a27fb6d61ddda552b
httpd-manual-2.0.52-41.ent.i386.rpm     e97428d22bd8f6779e82a68b3c263aff
httpd-suexec-2.0.52-41.ent.i386.rpm     30c2c69512bfd093f8b52f3c1deaf3bd
mod_ssl-2.0.52-41.ent.i386.rpm     f8250722e5d1c9b9ce9b932dcaa22d20
 
IA-64:
httpd-2.0.52-41.ent.ia64.rpm     bc792441928dc0d02eeecd3a2f6aa8fb
httpd-devel-2.0.52-41.ent.ia64.rpm     65dde72aac91610e449740d2146567bb
httpd-manual-2.0.52-41.ent.ia64.rpm     0380f3494ddb987056da31b71d81f3de
httpd-suexec-2.0.52-41.ent.ia64.rpm     8a4114f9ed2eb71be4db73229730a678
mod_ssl-2.0.52-41.ent.ia64.rpm     120d53f1c4a434c1ee7271f04c3a417b
 
x86_64:
httpd-2.0.52-41.ent.x86_64.rpm     f9bbbf1060967bf42108ffb2a417b274
httpd-devel-2.0.52-41.ent.x86_64.rpm     a775ad695123a40133bf6cc5964cd0e4
httpd-manual-2.0.52-41.ent.x86_64.rpm     7db249d1e320eea7f8f72ce14689069b
httpd-suexec-2.0.52-41.ent.x86_64.rpm     36a484b6a159e62c5297084d0065350c
mod_ssl-2.0.52-41.ent.x86_64.rpm     55a7f92ad41f9eadd584d92599b9f06d
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
httpd-2.0.52-41.ent.src.rpm     2f1f4190df450eb755409da78ccabac1
 
IA-32:
httpd-2.0.52-41.ent.i386.rpm     1c3e160e79ca3493c1b3eb5a03d49e0b
httpd-devel-2.0.52-41.ent.i386.rpm     a5a3da837e31f07a27fb6d61ddda552b
httpd-manual-2.0.52-41.ent.i386.rpm     e97428d22bd8f6779e82a68b3c263aff
httpd-suexec-2.0.52-41.ent.i386.rpm     30c2c69512bfd093f8b52f3c1deaf3bd
mod_ssl-2.0.52-41.ent.i386.rpm     f8250722e5d1c9b9ce9b932dcaa22d20
 
IA-64:
httpd-2.0.52-41.ent.ia64.rpm     bc792441928dc0d02eeecd3a2f6aa8fb
httpd-devel-2.0.52-41.ent.ia64.rpm     65dde72aac91610e449740d2146567bb
httpd-manual-2.0.52-41.ent.ia64.rpm     0380f3494ddb987056da31b71d81f3de
httpd-suexec-2.0.52-41.ent.ia64.rpm     8a4114f9ed2eb71be4db73229730a678
mod_ssl-2.0.52-41.ent.ia64.rpm     120d53f1c4a434c1ee7271f04c3a417b
 
x86_64:
httpd-2.0.52-41.ent.x86_64.rpm     f9bbbf1060967bf42108ffb2a417b274
httpd-devel-2.0.52-41.ent.x86_64.rpm     a775ad695123a40133bf6cc5964cd0e4
httpd-manual-2.0.52-41.ent.x86_64.rpm     7db249d1e320eea7f8f72ce14689069b
httpd-suexec-2.0.52-41.ent.x86_64.rpm     36a484b6a159e62c5297084d0065350c
mod_ssl-2.0.52-41.ent.x86_64.rpm     55a7f92ad41f9eadd584d92599b9f06d
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

253515 - mod_disk_cache: warn on use of unimplemented directives
254000 - RFE: add htcacheclean to implement disk cache garbage collection
431160 - Allow use of AddOutputFilterByType with reverse proxy


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/