|
From: | Jan-Henrik Haukeland |
Subject: | monit ./monitor.h ./util.c ./xmalloc.c http/eng... |
Date: | Fri, 21 Nov 2003 11:25:24 -0500 |
CVSROOT: /cvsroot/monit Module name: monit Branch: Changes by: Jan-Henrik Haukeland <address@hidden> 03/11/21 11:25:24 Modified files: . : monitor.h util.c xmalloc.c http : engine.c processor.c processor.h Removed files: http : http_utils.c http_utils.h Log message: Security fix: Fixed problems reported by Evgeny Legerov: Vulnerability 1: Long http method stack overflow Vulnerability 2: Denial of Service via negative Content-Length field [Pluss cleaned up the http processor a bit] CVSWeb URLs: http://savannah.gnu.org/cgi-bin/viewcvs/monit/monit/monitor.h.diff?tr1=1.117&tr2=1.118&r1=text&r2=text http://savannah.gnu.org/cgi-bin/viewcvs/monit/monit/util.c.diff?tr1=1.104&tr2=1.105&r1=text&r2=text http://savannah.gnu.org/cgi-bin/viewcvs/monit/monit/xmalloc.c.diff?tr1=1.9&tr2=1.10&r1=text&r2=text http://savannah.gnu.org/cgi-bin/viewcvs/monit/monit/http/engine.c.diff?tr1=1.51&tr2=1.52&r1=text&r2=text http://savannah.gnu.org/cgi-bin/viewcvs/monit/monit/http/processor.c.diff?tr1=1.31&tr2=1.32&r1=text&r2=text http://savannah.gnu.org/cgi-bin/viewcvs/monit/monit/http/processor.h.diff?tr1=1.10&tr2=1.11&r1=text&r2=text
[Prev in Thread] | Current Thread | [Next in Thread] |