from the SPARC64-only dept.
A bug has been fixed in the in-tree Apache server which affected access controls.
This only affects the Sparc64 platform
, so if you are running an OpenBSD web server on i386 or PPC you are ok, it appears. From the
OpenBSD errata site
Due to a bug in the parsing of Allow/Deny rules for httpd(8)'s access module, using IP addresses without a netmask on big endian 64-bit platforms causes the rules to fail to match. This only affects sparc64.