-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2012-04-23 09:26:54 UTC
-
Revision ID:
package-import@ubuntu.com-20120423092654-rlevq1pnpwsoybv2
Tags: 6.1.24-6ubuntu0.11.04.1
* SECURITY UPDATE: denial of service via many hash collisions
- debian/patches/CVE-2011-4461.patch: limit number of form parameters
to avoid a DoS in modules/jetty/src/main/java/org/mortbay/jetty/Request.java,
modules/jetty/src/main/java/org/mortbay/jetty/handler/ContextHandler.java,
modules/jetty/src/test/java/org/mortbay/jetty/RequestTest.java,
modules/util/src/main/java/org/mortbay/util/UrlEncoded.java,
modules/util/src/test/java/org/mortbay/util/URLEncodedTest.java.
- CVE-2011-4461