[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: FW: Apache httpd: vulnerability with chunked encoding

To: Dries Schellekens <gwyllion@ace.ulyssis.org>
Subject: Re: FW: Apache httpd: vulnerability with chunked encoding
From: Brad <brad@comstyle.com>
Date: Mon, 17 Jun 2002 17:18:47 -0400 (EDT)
Cc: misc@openbsd.org

No, that's the bad fix that doesn't work.

You want the diff from this...
http://www.openbsd.org/cgi-bin/cvsweb/src/usr.sbin/httpd/src/main/http_protocol.c.diff?r1=1.10&r2=1.12

>Date: Mon, 17 Jun 2002 21:18:52 +0200 (CEST)
>From: Dries Schellekens <gwyllion@ace.ulyssis.org>
>To: Rawten List Access <lists@rawten.net>
>Cc: misc@openbsd.org
>Subject: Re: FW: Apache httpd: vulnerability with chunked encoding
>
>On Mon, 17 Jun 2002, Rawten List Access wrote:
>
>> ----------
>> From: Mark J Cox <mjc@apache.org>
>> Date: Mon, 17 Jun 2002 18:21:15 +0100 (BST)
>>
>> Subject: Apache httpd: vulnerability with chunked encoding
>>
>
>This was fixed in -current by henning 2 hours ago

References:
- Re: FW: Apache httpd: vulnerability with chunked encoding
  - From: Dries Schellekens <gwyllion@ace.ulyssis.org>

Prev by Date: Re: pppd
Next by Date: Re: FW: Apache httpd: vulnerability with chunked encoding
Prev by thread: Re: FW: Apache httpd: vulnerability with chunked encoding
Next by thread: Re: FW: Apache httpd: vulnerability with chunked encoding
Index(es):
- Date
- Thread