Author: covener
Revision: 1916778
Modified property: svn:log
Modified: svn:log at Thu Apr 4 14:03:13 2024
------------------------------------------------------------------------------
--- svn:log (original)
+++ svn:log Thu Apr 4 14:03:13 2024
@@ -1,6 +1,15 @@
header validation after content-* are eval'ed
backport r1916770 from trunk
+
+ *) SECURITY: CVE-2023-38709: Apache HTTP Server: HTTP response
+ splitting (cve.mitre.org)
+ Faulty input validation in the core of Apache allows malicious
+ or exploitable backend/content generators to split HTTP
+ responses.
+ This issue affects Apache HTTP Server: through 2.4.58.
+ Credits: Orange Tsai (@orange_8361) from DEVCORE
+
Submitted By: ylavic
Revision: 1916778
Modified property: svn:log
Modified: svn:log at Thu Apr 4 14:03:13 2024
------------------------------------------------------------------------------
--- svn:log (original)
+++ svn:log Thu Apr 4 14:03:13 2024
@@ -1,6 +1,15 @@
header validation after content-* are eval'ed
backport r1916770 from trunk
+
+ *) SECURITY: CVE-2023-38709: Apache HTTP Server: HTTP response
+ splitting (cve.mitre.org)
+ Faulty input validation in the core of Apache allows malicious
+ or exploitable backend/content generators to split HTTP
+ responses.
+ This issue affects Apache HTTP Server: through 2.4.58.
+ Credits: Orange Tsai (@orange_8361) from DEVCORE
+
Submitted By: ylavic