Denial of Service in libhtp
ID: | FEDORA-2014-16880 |
Distribution: | Fedora |
Plattformen: | Fedora 21 |
Datum: | Mo, 19. Januar 2015, 08:13 |
Referenzen: | Keine Angabe |
Applikationen: | libhtp |
Originalnachricht |
|
Name : libhtp Product : Fedora 21 Version : 0.5.16 Release : 1.fc21 URL : http://www.libhtp.org Summary : Security-aware parser for the HTTP protocol and the related bits and pieces Description : LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. The goals of the project, in the order of importance, are as follows: 1. Completeness of coverage; 2. Permissive parsing; 3. Awareness of evasion techniques; 4. Performance; -------------------------------------------------------------------------------- Update Information: ### 0.5.16 (11 December 2014) * Per personality requestline leading whitespace handling [Victor Julien] * Improve request line parsing with leading spaces [Victor Julien] * Harden decompress code against memory stress [Victor Julien] -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 12 2014 Mathieu Bridon |