Released 0.12.5

Bugfix version 0.12.5 has been released.

This fixes a DoS vulnerability caused due to an error when handling certain HTTP fields. This could be exploited to terminate an affected server via e.g. specially crafted HTTP headers containing wide characters.

Upgrade is strongly advised.

Thanks to ipax of DcLabs Security Group for finding and reporting the issue.


news/released_0.12.5.txt · Last modified: 2011/01/28 14:41 by LtWorf
Recent changes RSS feed Valid XHTML 1.0 Valid CSS Driven by DokuWiki