PQ85834; 2.0.47,2.0.42,2.0.42.1,2.0.42.2: GSKit vulnerability and cumulative fix
 Downloadable files
 
Abstract
PQ85834 cumulative fix for IBM® HTTP Server 2.0.42.2 and IBM HTTP Server 2.0.47 and fix for GSKit vulnerability.
 
Download Description
This contains fixes for issues encountered with IBM HTTP Server 2.0.42.2, for which no interim fix was previously available:

GSKit vulnerability: Certain malformed SSL records may lead to DOS.
PQ85944 glibc incompatibility.
Fix ap_custom_response() storage corruption problem.
Fix mod_dav problem with manipulating locks on some platforms.
Add ThreadStackSize to resolve stack overflow with some third-party modules.
Remove compile-time limit on LimitRequestLine config directive.
Resolve CAN-2004-0174.
Resolve CAN-2003-0542.
PQ82056 Remove FD_SETSIZE restrictions on client connections.
Make mod_status show 'L' state for hung logging processes.
Resolve apxs problems (a perl script for building 3rd party IBM HTTP Server V2 modules).
Lower severity of the "listener thread did not exit" message to debug.
Does not respect the Server header field as set by modules and CGIs.
Restart mod_cgid daemon if it crashes.

This contains fixes for additional issues encountered with IBM HTTP Server 2.0.47, for which no interim fix was previously available:

GSKit vulnerability: Certain malformed SSL records may lead to DOS.
PQ85944 glibc incompatibility .
Fix ap_custom_response() storage corruption problem.
Fix mod_dav problem with manipulating locks on some platforms.
Add ThreadStackSize to resolve stack overflow with some third-party modules.
Remove compile-time limit on LimitRequestLine config directive.
Resolve CAN-2004-0174.
Resolve CAN-2003-0542.
PQ82056 Remove FD_SETSIZE restrictions on client connections.
Make mod_status show 'L' state for hung logging processes.

NOTICE: IBM HTTP Server interim fixes are delivered through an export controlled Web site.
 
Prerequisites
NONE
 
 
Installation instructions
Please review the readme.txt for detailed installation instructions.
 
URL LANGUAGE SIZE(Bytes)
Readme US English 3692
 
Download package
DOWNLOAD RELEASE DATE LANGUAGE SIZE(Bytes) Download Options
PQ85834 - Any Version/All Platforms 4/2/2004 US English 27699200 HTTP
 
Technical support
1-800-IBM-SERV (U.S. Only)
 
Cross Reference information
Segment Product Component Platform Version Edition
Application Servers IBM HTTP Server SSL
Problems (APARs) fixed
PQ78320, PQ78384, PQ78925, PQ79217, PQ80104, PQ80604, PQ80619, PQ81843, PQ82441, PQ83045, PQ83048, PQ83559, PQ84017, PQ84990, PQ77489
 
 


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > IBM HTTP Server > Base Server
Operating system(s): Linux
Software version: 2.0.42
Software edition:
Reference #: 4006719
IBM Group: Software Group
Modified date: Sep 30, 2004