Checkout
Jim Jagielski
committed
on 30 Sep 12
Merge r1198940 from trunk:

Fix integer overflow in ap_pregsub. This can be triggered e.g.
with mod_setenvif via a malicious .htaccess

CVE-… Show more
Merge r1198940 from trunk:

Fix integer overflow in ap_pregsub. This can be triggered e.g.

with mod_setenvif via a malicious .htaccess

CVE-2011-3607

http://www.halfdog.net/Security/2011/ApacheModSetEnvIfIntegerOverflow/

Submitted by: sf

Reviewed/backported by: jim

Show less