enterprise-support team mailing list archive

Thread
Date

[Bug 839569] Re: Apache2 is still Range header DoS vulnerable if gzip compression is enabled

To: enterprise-support@xxxxxxxxxxxxxxxxxxx
From: Steve Beattie <sbeattie@xxxxxxxxxx>
Date: Thu, 08 Sep 2011 18:08:16 -0000
Reply-to: Bug 839569 <839569@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Paweł and Upen, thanks for following up. Based on your comments, I'm
going to close this bug report; please re-open it if you find any
evidence that suggests the fix for CVE-2011-3192 is incomplete.

Stefan, thanks for chiming in.

** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-3192

** Changed in: apache2 (Ubuntu)
       Status: Incomplete => Invalid

-- 
You received this bug notification because you are a member of Ubuntu
Server/Client Support Team, which is subscribed to apache2 in Ubuntu.
Matching subscriptions: Ubuntu Server/Client Support Team
https://bugs.launchpad.net/bugs/839569

Title:
  Apache2 is still Range header DoS vulnerable if gzip compression is
  enabled

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/839569/+subscriptions