FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

apache -- Range header DoS vulnerability

Affected packages
2.* < apache < 2.2.20
2.* < apache-event < 2.2.20
2.* < apache-itk < 2.2.20
2.* < apache-peruser < 2.2.20
2.* < apache-worker < 2.2.20

Details

VuXML ID 7f6108d2-cea8-11e0-9d58-0800279895ea
Discovery 2011-08-24
Entry 2011-08-30
Modified 2011-09-01

Apache HTTP server project reports:

A denial of service vulnerability has been found in the way the multiple overlapping ranges are handled by Apache HTTPD server.

References

CVE Name CVE-2011-3192
URL https://people.apache.org/~dirkx/CVE-2011-3192.txt
URL https://svn.apache.org/viewvc?view=revision&revision=1161534
URL https://svn.apache.org/viewvc?view=revision&revision=1162874