]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit
projects / thirdparty / apache / httpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 99ddf96) | patch
merge from trunk and 2.2.x:
authorJeff Trawick <trawick@apache.org>
Thu, 11 Mar 2010 15:57:26 +0000 (15:57 +0000)
committerJeff Trawick <trawick@apache.org>
Thu, 11 Mar 2010 15:57:26 +0000 (15:57 +0000)
commit4b68031296328fd1d0ee402d9e97a7580eaa07d3
tree5856b1a3b5aaf6b9c15d83b39caa32ed4d4aef28tree
parent99ddf96a3deb45f3cc5af06290941aadc29bc512commit | diff
merge from trunk and 2.2.x:

SECURITY: CVE-2010-0434 (cve.mitre.org)
Ensure each subrequest has a shallow copy of headers_in so that the
parent request headers are not corrupted.  Elimiates a problematic
optimization in the case of no request body.

PR: 48359
Submitted by: Jake Scott, William Rowe, Ruediger Pluem
Reviewed by: wrowe, trawick, rpluem

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.0.x@921910 13f79535-47bb-0310-9956-ffa450edef68
CHANGES diff | blob | blame | history
STATUS diff | blob | blame | history
server/protocol.c diff | blob | blame | history
Mirror of https://github.com/apache/httpd.git