]> granicus.if.org Git - apache/commit
projects / apache / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 577eaf2) | patch
CVE-2014-0098 (reported by Rainer Canavan <rainer-apache 7val com>)
authorWilliam A. Rowe Jr <wrowe@apache.org>
Fri, 7 Mar 2014 20:56:24 +0000 (20:56 +0000)
committerWilliam A. Rowe Jr <wrowe@apache.org>
Fri, 7 Mar 2014 20:56:24 +0000 (20:56 +0000)
commit0559370e7e2bf322d11d6df51b934d211fb2465c
treeb5e95bde065676d76a269177151fcb7f98d9ebb9tree | snapshot
parent577eaf25cdc37727001d83a858b75c11687ad745commit | diff
CVE-2014-0098 (reported by Rainer Canavan <rainer-apache 7val com>)
Segfaults w/ truncated cookie logging.

Clean up the cookie logging parser to recognize only the cookie=value pairs,
not valueless cookies.  This refactors multiple passes over the same string
buffer into a single pass parser.

Submitted by: wrowe
Reviewed by: rpluem, jim

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1575400 13f79535-47bb-0310-9956-ffa450edef68
CHANGES diff | blob | history
modules/loggers/mod_log_config.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.