granicus.if.org Git - apache/commit

author	Jim Jagielski <jim@apache.org>
	Tue, 4 Jul 2017 12:34:15 +0000 (12:34 +0000)
committer	Jim Jagielski <jim@apache.org>
	Tue, 4 Jul 2017 12:34:15 +0000 (12:34 +0000)
commit	a9067ba9f7ea0de1adddad3e7a01c8c8a91b70f1
tree	ec275c7de78d80e8f45a0cce0c8955009782f66b	tree \| snapshot
parent	c14c10a4f0acb55b4c381a487117a484f2d7129e	commit \| diff

SECURITY: CVE-2017-9789: Read after free in mod_http2.

When under stress, closing many connections, the HTTP/2
handling code would sometimes access memory after it has
been freed, resulting in potentially erratic behaviour.

Merge r1800689 from trunk:

Disable and give warning when mpm_prefork is encountered.
The server will continue to work, but HTTP/2 will no longer be negotiated.

Submitted by: icing
Reviewed by: icing, ylavic, jim

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1800774 13f79535-47bb-0310-9956-ffa450edef68

CHANGES		diff \| blob \| history
STATUS		diff \| blob \| history
modules/http2/h2_conn.c		diff \| blob \| history
modules/http2/h2_conn.h		diff \| blob \| history
modules/http2/h2_mplx.c		diff \| blob \| history
modules/http2/h2_mplx.h		diff \| blob \| history
modules/http2/h2_session.c		diff \| blob \| history
modules/http2/h2_stream.c		diff \| blob \| history
modules/http2/h2_switch.c		diff \| blob \| history
modules/http2/h2_util.c		diff \| blob \| history
modules/http2/h2_workers.c		diff \| blob \| history
modules/http2/mod_http2.c		diff \| blob \| history