httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 37252] New: - gen_test_char reject NLS string
Date Wed, 26 Oct 2005 10:17:35 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=37252>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=37252

           Summary: gen_test_char reject NLS string
           Product: Apache httpd-1.3
           Version: HEAD
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: regression
          Priority: P2
         Component: core
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: iorihonda@yahoo.co.jp
                CC: iorihonda@yahoo.co.jp


By CAN-2003-0020 fix, escape char are logged with encoded char.
SECURITY: CAN-2003-0020 (cve.mitre.org) 
      Escape arbitrary data before writing into the errorlog. Unescaped 
      errorlogs are still possible using the compile time switch 
      "-DAP_UNSAFE_ERROR_LOG_UNESCAPED".  [Geoffrey Young, Andr¿Malo]

This checked by test_char_table[] table which is generated by gen_test_char 
program. It makes all 8 bit char as 0x36. (test_char.h has the result of 
gen_test_char) By this change, 8 bit NLS strings in error_log are unreadable.
This is very bad.

As far as I know, there is no escape sequence command larger than 0x80.
So, please exclude 8 bit character from test_char[] table.

diff ./gen_test_char.c ./gen_test_char.c.org
105,107d104
<
<         if (c >= 0x80)
<             flags = 0;

-- 
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message