]> git.ipfire.org Git - thirdparty/apache/httpd.git/commit
projects / thirdparty / apache / httpd.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 22dd8dc) | patch
SECURITY: CVE-2014-0231
authorWilliam A. Rowe Jr <wrowe@apache.org>
Wed, 16 Jul 2014 20:56:51 +0000 (20:56 +0000)
committerWilliam A. Rowe Jr <wrowe@apache.org>
Wed, 16 Jul 2014 20:56:51 +0000 (20:56 +0000)
commitfd7e78dc7ab335965eb667e1f8ab0a8ef86f0ba9
tree99912f4d9dcfacfd968a250469dd8645e5957949tree | snapshot
parent22dd8dcac7b80c91f03516c7ef6269ba286a5398commit | diff
SECURITY: CVE-2014-0231

  mod_cgid: Fix a denial of service against CGI scripts that do
  not consume stdin that could lead to lingering HTTPD child processes
  filling up the scoreboard and eventually hanging the server.

Submitted by: Rainer Jung, Eric Covener, Yann Ylavic
Backports: r1610509, r1535125
Reviewed by: covener, trawick, ylavic

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@1611185 13f79535-47bb-0310-9956-ffa450edef68
CHANGES diff | blob | blame | history
STATUS diff | blob | blame | history
docs/manual/mod/mod_cgid.xml diff | blob | blame | history
modules/generators/mod_cgid.c diff | blob | blame | history
Mirror of https://github.com/apache/httpd.git