← Back to branch summary

~ubuntu-branches/ubuntu/breezy/apache2/breezy-security

7 by Martin Pitt
* SECURITY UPDATE: Remote DoS, potential remote code execution. 
1
 
--- build-tree.orig/apache2/modules/mappers/mod_rewrite.c	2006-07-26 07:13:27.000000000 +0000

2
 
+++ build-tree/apache2/modules/mappers/mod_rewrite.c	2006-07-26 07:13:16.000000000 +0000

3
 
@@ -2906,7 +2906,7 @@

4
 
             int c = 0;

5
 
 

6
 
             token[0] = cp = apr_pstrdup(p, cp);

7
 
-            while (*cp && c < 5) {

8
 
+            while (*cp && c < 4) {

9
 
                 if (*cp == '?') {

10
 
                     token[++c] = cp + 1;

11
 
                     *cp = '\0';