/[Apache-SVN]
ViewVC logotype

Revision 1535125

Jump to revision: Previous Next
Author: covener
Date: Wed Oct 23 19:26:08 2013 UTC (10 years, 5 months ago)
Changed paths: 6
Log Message: 
SECURITY (CVE-2014-0231): Fix for DoS due to hang waiting for CGI script.
Patch one of two.

Permit a read timeout to be used in mod_cgid to give up on a slow CGI script.

In trunk, it defaults to the servers Timeout.  PR43494 

Submitted By: Eric Covener, Toshikuni Fukaya
Reviewed By: Eric Covener

Changed paths

Path Details
Directoryhttpd/httpd/trunk/CHANGES modified , text changed
Directoryhttpd/httpd/trunk/docs/log-message-tags/next-number modified , text changed
Directoryhttpd/httpd/trunk/docs/manual/mod/core.xml modified , text changed
Directoryhttpd/httpd/trunk/docs/manual/mod/mod_cgid.xml modified , text changed
Directoryhttpd/httpd/trunk/docs/manual/upgrading.xml modified , text changed
Directoryhttpd/httpd/trunk/modules/generators/mod_cgid.c modified , text changed
infrastructure at apache.org
 ViewVC Help
Powered by ViewVC 1.1.26