Debian Patches
Status for libmicrohttpd/0.9.75-6
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| debian/0001-PostProcessor-DoS.patch | fix parser bug that could be used to crash servers using the MHD_PostProcessor Fix potential DoS vector in MHD_PostProcessor discovered by Gynvael Coldwind and Dejan Alvadzijevic [CVE-2023-27371]. . While the researchers have not been able to exploit this attack vector when libmicrohttpd is compiled with the standard GNU C library, it is recommended that you update MHD as soon as possible if PostProcessor functionality is used in your applications. diff -Naurp libmicrohttpd.orig/src/microhttpd/postprocessor.c libmicrohttpd/src/microhttpd/postprocessor.c |
Christian Grothoff <christian@grothoff.org> | no |