ViewVC logotype

Revision 1684515

Jump to revision: Previous Next
Author: wrowe
Date: Tue Jun 9 20:16:39 2015 UTC (4 years, 4 months ago)
Changed paths: 2
Log Message:
CVE-2015-3183 Fix chunk header parsing defect.

Remove apr_brigade_flatten(), buffering and duplicated code from
the HTTP_IN filter, parse chunks in a single pass with zero copy.

Limit accepted chunk-size to 2^63-1 and be strict about chunk-ext
authorized characters.

Submitted by: minfrin, ylavic
Reviewed by: ylavic, wrowe, jim
Backports: 1484852, 1684513
Reported by: regilero <regis.leroy makina-corpus.com>

Changed paths

Path Details
Directoryhttpd/httpd/branches/2.4.x/CHANGES modified , text changed
Directoryhttpd/httpd/branches/2.4.x/modules/http/http_filters.c modified , text changed

infrastructure at apache.org
ViewVC Help
Powered by ViewVC 1.1.26