[ANNOUNCE] mod_ssl 2.8.14-1.3.27
Sorry, mod_ssl 2.8.13 introduced two nasty bugs which let the server crash. This is now fixed with mod_ssl 2.8.14 together with one more long-standing crash bug related to the SHMHT session cache. Please upgrade to this latest mod_ssl 2.8 version for Apache 1.3. Thanks. o http://www.modssl.org/source/ o ftp://ftp.modssl.org/source/ Yours, Ralf S. Engelschall [EMAIL PROTECTED] www.engelschall.com Changes with mod_ssl 2.8.14 (18-Mar-2002 to 21-Mar-2003) *) Fixed logic in the destruction of a temporary certificate structure and this way avoid a crash due to freeing NULL object. *) Removed one newly introduced X509_free() call in the context of SSL_get_certificate(), because this function does not increment a reference count (although SSL_get_peer_certificate() does). *) Fixed hash-table based shared memory session cache (shmht) implementation by making sure that the underlying hash table library does not crash if memory cannot be allocated. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: [ANNOUNCE] mod_ssl 2.8.14-1.3.27
Hello Ralf, Ralf S. Engelschall wrote: Sorry, mod_ssl 2.8.13 introduced two nasty bugs which let the server crash. This is now fixed with mod_ssl 2.8.14 together with one more long-standing crash bug related to the SHMHT session cache. Please upgrade to this latest mod_ssl 2.8 version for Apache 1.3. Thanks. I hav'nt checked but: if the file pkg.sslcfg/ca-bundle.crt still contains the certificate TC TrustCenter, Germany, Class 0 CA Please remove it ! It is a DEMO certificate and was never intended to be in any list of trusted CA certificates. Bye Goetz -- Goetz Babin-Ebell, TC TrustCenter AG, http://www.trustcenter.de Sonninstr. 24-28, 20097 Hamburg, Germany Tel.: +49-(0)40 80 80 26 -0, Fax: +49-(0)40 80 80 26 -126 smime.p7s Description: S/MIME Cryptographic Signature
