Softpedia >Mac >Developer Tools >Apache Portable Runtime >  Changelog

Apache Portable Runtime Changelog

What's new in Apache Portable Runtime 1.5.2

Apr 30, 2015
  • SECURITY: CVE-2015-1829 (cve.mitre.org) APR applications using APR named pipe support on Windows can be vulnerable to a pipe squatting attack from a local process; the extent of the vulnerability, when present, depends on the application. Initial analysis and report was provided by John Hernandez of Casaba Security via HP SSRT Security Alert. [Yann Ylavic]
  • apr_atomic: Fix errors when building on Visual Studio 2013 while maintaining the ability to build on Visual Studio 6 with Windows Server 2003 R2 SDK. PR 57191. [Gregg Smith]
  • Switch to generic atomics for early/unpatched Solaris 10 not exporting some atomic functions. PR 55418. [Yann Ylavic]
  • apr_file_mktemp() on HP-UX: Remove limitation of 26 temporary files per process. PR 57677. [Jeff Trawick]
  • apr_escape: Correctly calculate the size of the returned string in apr_escape_path and set the correct return value in case we actually escape the string. [] PR 57230.
  • pollcb on Windows: Handle calls with no file/socket descriptors. Follow up to PR 49882. [Jeff Trawick, Yann Ylavic]
  • apr_poll(cb): fix error paths returned values and leaks. [Yann Ylavic]
  • apr_thread_cond_*wait() on BeOS: Fix broken logic. PR 45800. [Jochen Voss (no e-mail)]
  • apr_skiplist: Optimize the number of allocations by reusing pooled or malloc()ed nodes for the lifetime of the skiplist. [Yann Ylavic]
  • apr_skiplist: Fix possible multiple-free() on the same value in apr_skiplist_remove_all(). [Yann Ylavic]
  • apr_pollset: On z/OS, threadsafe apr_pollset_poll() may return "EDC8102I Operation would block" under load. [Pat Odonnell ]
  • On z/OS, apr_sockaddr_info_get() with family == APR_UNSPEC was not returning IPv4 addresses if any IPv6 addresses were returned. [Eric Covener]
  • Windows cmake build: Fix an incompatibility with cmake 2.8.12 and later. [Jeff Trawick]
  • apr_global_mutex/apr_proc_mutex: Resolve failures with the POSIX sem implementation in environments which receive signals. [Jeff Trawick]
  • apr_skiplist: Fix potential corruption of skiplists leading to results or crashes. [Takashi Sato , Eric Covener] PR 56654.
  • Improve platform detection by updating config.guess and config.sub. [Rainer Jung]

New in Apache Portable Runtime 1.5.1 (May 30, 2014)

  • apr_os_proc_mutex_get() on Unix: Avoid segfault for cross-process pthread mutexes. [Yann Ylavic ]
  • When using shmget-based shared memory, the ID used for ftok is now an APR hash of the filename instead of the constant '1'. We do this to help avoid collisions. PR 53996 [Jim Jagielski]
  • apr_socket_atreadeof(): Fix breakage on OS X. [Jim Jagielski]
  • Fix POSIX shared memory (shm_open) use for named shared memory. Includes adding '--enable-posix-shm' to force POSIX shm if available, and OS X compatibility. PR 55928. [Jozef Hatala , Jim Jagielski]
  • Fix race condition when calling apr_dir_make_recursive from multiple threads on Windows. [Bert Huijben]
  • Fix apr_escape.c compilation errors on EBCDIC platforms. [Eric Covener]
  • FreeBSD 10: Correct a regression in 1.5.0 which affected non-blocking sockets in some applications, including httpd. [Jeff Trawick]
  • Windows cmake build: Fix incorrect installation of some .pdb files. Fix incorrect use of some logic intended for Windows 9x, including legacy filesystem interfaces and dynamic loading of some Windows APIs. [Jeff Trawick]
  • apr_skiplist: Add compatibility with C++ applications. [Jeff Trawick]
  • Correct a regression in 1.5.0 which affected out-of-tree builds on Unix. [Rainer Jung]
  • Improve platform detection for bundled expat by updating config.guess and config.sub. [Rainer Jung]

New in Apache Portable Runtime 1.4.5 (Nov 1, 2011)

  • Security: CVE-2011-1928 apr_fnmatch(): Fix high CPU loop. [William Rowe]
  • Fix top_builddir in installed apr_rules.mk. [Bojan Smojver]

New in Apache Portable Runtime 1.4.2 (Apr 14, 2010)

  • Undo a crash-bug introduced in 1.3.9 affecting some applications of the apr hash and table structures, reported to affect Subversion by Bert Huijben .

New in Apache Portable Runtime 1.3.8 (Aug 6, 2009)

  • SECURITY: CVE-2009-2412 (cve.mitre.org): Fix overflow in pools and rmm, where size alignment was taking place.
  • Make sure that "make check" is used in the RPM spec file, consistent with apr-util.
  • Pass default environment to testflock, testoc and testpipe children, so that tests run when APR is compiled with Intel C Compiler.