---
- branch: MAIN
  date: Tue Jul  5 16:13:53 UTC 2016
  files:
  - new: '1.46'
    old: '1.45'
    path: pkgsrc/www/apache24/Makefile
    pathrev: pkgsrc/www/apache24/Makefile@1.46
    type: modified
  - new: '1.22'
    old: '1.21'
    path: pkgsrc/www/apache24/PLIST
    pathrev: pkgsrc/www/apache24/PLIST@1.22
    type: modified
  - new: '1.25'
    old: '1.24'
    path: pkgsrc/www/apache24/distinfo
    pathrev: pkgsrc/www/apache24/distinfo@1.25
    type: modified
  id: 20160705T161353Z.fc7c677a17ed485faa3968f401f6fc5d6b47842e
  log: |
    Update apache24 to 2.4.23.

    (NOTE: Versions 2.4.22 and 2.4.21 were not released.)

    Changes from 2.4.20 are too many to write here, please refer CHANGES file.

    And Apache 2.4.23 fixes CVE-2016-4979; X509 Client certificate based
    authentication can be bypassed when HTTP/2 is used.
  module: pkgsrc
  subject: 'CVS commit: pkgsrc/www/apache24'
  unixtime: '1467735233'
  user: taca