On Sat, Dec 24, 2016 at 07:02:26AM +0100, Stefan Fritsch wrote:
> The problem is that the injected header lines only have a LF and no CR. I
> suggest the attached patch.
Oh! Silly of me, should've thought of that. Glad it was that easy.
I'll apply this and upload a fixed package soon.
Happy h
On Friday, 23 December 2016 18:56:54 CET Niko Tyni wrote:
> This passage in RFC 7230, section 9.4., seems relevant:
>
>A more effective mitigation is to prevent anything other than the
>server's core protocol libraries from sending a CR or LF within the
>header section, which means res
Control: retitle -1 libapache2-mod-perl2: FTBFS: test failures with Apache
2.4.25
Control: tag -1 patch
@apache2 maintainers (cc'd): it seems that mod_perl is no longer able
to 'inject headers' with apache2 2.4.25. See below. A workaround is to
explicitly configure the server for 'unsafe' behavio
Processing control commands:
> retitle -1 libapache2-mod-perl2: FTBFS: test failures with Apache 2.4.25
Bug #849082 [libapache2-mod-perl2] libapache2-mod-perl2: FTBFS: test failures
Changed Bug title to 'libapache2-mod-perl2: FTBFS: test failures with Apache
2.4.25' from 'libapache2-mod-perl2: FT
4 matches
Mail list logo
