httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Behlendorf <br...@hyperreal.com>
Subject cvs commit: apache-site 113announce.html
Date Mon, 12 May 1997 01:20:01 GMT
brian       97/05/11 18:20:00

  Modified:    .         113announce.html
  Log:
  Submitted by:	John Lawton <arpsky@pressroom.com>
  
  URL update
  
  Revision  Changes    Path
  1.3       +1 -1      apache-site/113announce.html
  
  Index: 113announce.html
  ===================================================================
  RCS file: /export/home/cvs/apache-site/113announce.html,v
  retrieving revision 1.2
  retrieving revision 1.3
  diff -C3 -r1.2 -r1.3
  *** 113announce.html	1997/04/27 07:26:40	1.2
  --- 113announce.html	1997/05/12 01:19:59	1.3
  ***************
  *** 18,24 ****
    <LI>A hole in mod_cookies which allows outside users to scribble the
    memory stack, possibly allowing the user to gain shell access to the
    server as the user the httpd children run as. Thanks to <A
  ! HREF="ftp://ftp.secnet.com/pub/advisories/APACHE_MOD.advisory.1.13.97">Secure
    Networks</A> for advising us of this hole ahead of time and providing
    a patch for the problems.
    
  --- 18,24 ----
    <LI>A hole in mod_cookies which allows outside users to scribble the
    memory stack, possibly allowing the user to gain shell access to the
    server as the user the httpd children run as. Thanks to <A
  ! HREF="ftp://ftp.secnet.com/pub/advisories/SNI-04.APACHE_MOD.advisory">Secure
    Networks</A> for advising us of this hole ahead of time and providing
    a patch for the problems.
    
  
  
  

Mime
View raw message