*) SECURITY: CVE-2014-0231 (cve.mitre.org)
mod_cgid: Fix a denial of service against CGI scripts that do
not consume stdin that could lead to lingering HTTPD child processes
- filling up the scoreboard and eventually hanging the server.
+ filling up the scoreboard and eventually hanging the server. Adds
+ "CGIDRequestTimeout" directive.
[Rainer Jung, Eric Covener, Yann Ylavic]
*) mod_ssl: Extend the scope of SSLSessionCacheTimeout to sessions