httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 49363] Apache Chunked Encoding Overflow Test
Date Fri, 04 Jun 2010 04:56:49 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=49363

Priya.Padige@ge.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|RESOLVED                    |REOPENED
         Resolution|INVALID                     |

--- Comment #5 from Priya.Padige@ge.com 2010-06-04 00:56:45 EDT ---
Hi Team,

Thankyou so much for responding back to us. Please find the report in plain
text below.

The URLs http://genet-ssodev1.jfwtc.ge.com:80/index.html are our internal URLS
which would be accessed only on our GE Network (3. Network).

Sorry for that.

Please confirm if the issue has been fixed in 2.2.11 also? 

As we have got to know from this site
http://httpd.apache.org/security/vulnerabilities_20.html  that the Critical
Apache Chunked Encoding Vulnerability  has been fixed in httpd 2.0.37. 

Our WebInspect Report also says that this could be a false positive report.But
please let us know why is it being captured as an Error.

Thankyou,
Priya

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message