angler-fishThe Vulnerability History Project

SECURITY: CVE-2017-7679 (cve.mitre.org)

      mod_mime can read one byte past the end of a buffer when sending a
malicious Content-Type response header.

Merge 1797550 from trunk:
mod_mime: fix quoted pair scanning

Submitted By: ylavic
Reviewed By: covener, ylavic, jim


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1797653 13f79535-47bb-0310-9956-ffa450edef68
by Ernestine the Ladybird 2017-06-05 12:12:31 UTC
commit d98d3a43c65477216db43998082608c6935ab08b
HTTPD Fix CVE-2017-7679
CHANGES
-2
STATUS
+5
modules/http/mod_mime.c
+2 -2
expand_less