Mercurial Mercurial > upstream > oracle > userland-gate / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
21146442 problem in UTILITY/LIGHTTPD s11-update
authorPetr Sumbera <petr.sumbera@oracle.com>
Wed, 03 Jun 2015 06:45:29 -0700
branchs11-update
changeset 4405 1c0df8678d62
parent 4404 8b214c26d9bb
child 4406 560233355bf5
21146442 problem in UTILITY/LIGHTTPD
components/lighttpd/patches/CVE-2015-3200.patch file | annotate | diff | comparison | revisions 
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/components/lighttpd/patches/CVE-2015-3200.patch	Wed Jun 03 06:45:29 2015 -0700
@@ -0,0 +1,16 @@
+Patch origin: in-house
+Patch status: submitted to upstream
+
+http://redmine.lighttpd.net/issues/2646
+
+--- src/http_auth.c
++++ src/http_auth.c
+@@ -857,7 +857,7 @@
+ 
+ 	/* r2 == user:password */
+ 	if (NULL == (pw = strchr(username->ptr, ':'))) {
+-		log_error_write(srv, __FILE__, __LINE__, "sb", ": is missing in", username);
++		log_error_write(srv, __FILE__, __LINE__, "s", ": is missing in decoded base64-string");
+ 
+ 		buffer_free(username);
+ 		return 0;
upstream/oracle/userland-gate