LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

apache: off-by-one buffer overflow

apache: off-by-one buffer overflow

Posted Aug 3, 2006 9:34 UTC (Thu) by mjcox@redhat.com (guest, #31775)
Parent article: apache: off-by-one buffer overflow

Timeline for those interested from my blog 

20060721-23:29 Mark Dowd forwards details of issue to security@apache.org
20060722-07:42 Initial response from Apache security team
20060722-08:14 Investigation, testing, and patches created
20060724-19:04 Negotiated release date with reporter
20060725-10:00 Notified NISCC and CERT to give vendors heads up
20060727-17:00 Fixes committed publically
20060727-23:30 Updates released to Apache site
20060828       Public announcement from Apache, McAfee, CERT, NISCC

(Log in to post comments)

apache: off-by-one buffer overflow

Posted Aug 3, 2006 10:14 UTC (Thu) by nix (subscriber, #2304) [Link]

I think that last date should be 20060728, right?

apache: off-by-one buffer overflow

Posted Aug 3, 2006 13:53 UTC (Thu) by mjcox@redhat.com (guest, #31775) [Link]

Yes. Well spotted :)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds