Context Navigation

← Previous Ticket
Next Ticket →

#17696 closed enhancement (fixed)

HTTP-Daemon-6.15 (Perl module)

Reported by:	Bruce Dubbs	Owned by:	ken@…
Priority:	elevated	Milestone:	11.3
Component:	BOOK	Version:	git
Severity:	normal	Keywords:
Cc:

Description ¶

New minor verion.

Change History (5)

comment:1 by ken@…, 2 years ago

Priority:	normal → elevated

Changes for version 6.15 - 2023-02-22

Fix CVE-2022-31081: Inconsistent Interpretation of HTTP Requests Correctly handle multiple Content-Length headers and its variants (Theo van Hoesel) Closes "Discrepancies in the Parsing of Content Length header ..." (GH#56) (blessingcharles) kill test server with KILL rather than QUIT (GH#63) (Graham Knop) Create TestServer test lib for running daemon process (GH#62) (Graham Knop) Clean up tests (GH#61) (Graham Knop)

nvd.nist.gov rates this as Medium, the originating CNA (github) rated this as high.

I'd like to take this for 11.4.

comment:2 by ken@…, 2 years ago

Milestone:	11.4 → 11.3
Owner:	changed from blfs-book to ken@…
Status:	new → assigned

s/11.4/11.3/

comment:3 by ken@…, 2 years ago

0e50eaf257afe482e70da8ba3e6f195cd63bdb27 pushed in 11.2-1305

comment:4 by ken@…, 2 years ago

Advisory SA 11.2-103 created.

comment:5 by ken@…, 2 years ago

Resolution:	→ fixed
Status:	assigned → closed

Note: See TracTickets for help on using tickets.

Download in other formats: