The Vulnerability History Project

SECURITY (CVE-2014-0231): Fix for DoS due to hang waiting for CGI script.

      Patch one of two.

Permit a read timeout to be used in mod_cgid to give up on a slow CGI script.

In trunk, it defaults to the servers Timeout.  PR43494 

Submitted By: Eric Covener, Toshikuni Fukaya
Reviewed By: Eric Covener



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1535125 13f79535-47bb-0310-9956-ffa450edef68

by Ernestine the Ladybird 2013-10-23 19:26:08 UTC

commit 41488e891d12eddcf21bb435d90ae71eda8d218a

HTTPD Fix CVE-2014-0231

CHANGES

-7

docs/log-message-tags/next-number

+1 -1

docs/manual/mod/core.xml

+2 -2

docs/manual/mod/mod_cgid.xml

-27

docs/manual/upgrading.xml

-6

modules/generators/mod_cgid.c

+2 -42

expand_less