angler-fishThe Vulnerability History Project

Merge https://svn.apache.org/r1796343 from trunk:

      *) SECURITY: CVE-2017-3169 (cve.mitre.org)
     mod_ssl may dereference a NULL pointer when third-party modules call
     ap_hook_process_connection() during an HTTP request to an HTTPS port.
     [Yann Ylavic]


Submitted By: ylavic
Reviewed By: covener, ylavic, wrowe



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@1799229 13f79535-47bb-0310-9956-ffa450edef68
by Ernestine the Ladybird 2017-06-19 16:52:00 UTC
commit 2f52ae84967935d11dd686a3293820674009310f
HTTPD Fix CVE-2017-3169
CHANGES
-5
STATUS
+7
modules/ssl/ssl_engine_io.c
+7 -8
expand_less