← Back to branch summary

~ubuntu-branches/ubuntu/breezy/apache2/breezy-security

« back to all changes in this revision

Viewing changes to debian/patches/053_mod_rewite_CVE-2006-3747

  • Committer: Bazaar Package Importer
  • Author(s): Martin Pitt
  • Date: 2006-07-26 07:18:39 UTC
  • Revision ID: james.westby@ubuntu.com-20060726071839-2v8mt5ymduuzf91l
Tags: 2.0.54-5ubuntu4.1
* SECURITY UPDATE: Remote DoS, potential remote code execution.
* Add debian/patches/053_mod_rewite_CVE-2006-3747:
  - Fix off-by-one buffer overflow in mod_rewrite's ldap scheme handler.
  - Reported by Mark Dowd of McAfee Avert Labs.
  - CVE-2006-3747

Show diffs side-by-side

added added

removed removed

Lines of Context:
debian/patches/053_mod_rewite_CVE-2006-3747
 
1
--- build-tree.orig/apache2/modules/mappers/mod_rewrite.c       2006-07-26 07:13:27.000000000 +0000
 
2
+++ build-tree/apache2/modules/mappers/mod_rewrite.c    2006-07-26 07:13:16.000000000 +0000
 
3
@@ -2906,7 +2906,7 @@
 
4
             int c = 0;
 
5
 
 
6
             token[0] = cp = apr_pstrdup(p, cp);
 
7
-            while (*cp && c < 5) {
 
8
+            while (*cp && c < 4) {
 
9
                 if (*cp == '?') {
 
10
                     token[++c] = cp + 1;
 
11
                     *cp = '\0';