]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit
projects / thirdparty / apache / httpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6627c80) | patch
backport r1234837 from trunk:
authorEric Covener <covener@apache.org>
Tue, 24 Jan 2012 20:02:19 +0000 (20:02 +0000)
committerEric Covener <covener@apache.org>
Tue, 24 Jan 2012 20:02:19 +0000 (20:02 +0000)
commitb465990b860c310ca85ce661623b5fb47fab11d2
tree2834463ae52fa8771ebdbcd8f3edf523a27bf64atree
parent6627c80356324786fca40c51afb24fc799803f81commit | diff
backport r1234837 from trunk:

    CVE-2012-0053: Fix an issue in error responses that could expose
    "httpOnly" cookies when no custom ErrorDocument is specified for
    status code 400.

Reviewed By: covener, trawick, gregames

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@1235454 13f79535-47bb-0310-9956-ffa450edef68
CHANGES diff | blob | blame | history
STATUS diff | blob | blame | history
server/protocol.c diff | blob | blame | history
Mirror of https://github.com/apache/httpd.git