Hi list, is there any information available regarding the mentioned potential Cross-Side-Scripting bug? (Any CERT/CC Advisory CA-xxxxx, BUGTRAQ-Messages etc...)
Thanks in advance & kind regards, B. Courtin > -----Original Message----- > From: Ralf S. Engelschall [mailto:rse@;engelschall.com] > Sent: Wednesday, October 23, 2002 11:15 AM > To: [EMAIL PROTECTED]; [EMAIL PROTECTED] > Subject: [ANNOUNCE] mod_ssl 2.8.12 > > > Because of a found Cross-Side-Scripting (XSS) bug in mod_ssl, > the fixed > maintainance version mod_ssl 2.8.12 is available for use with Apache > 1.3.27. > > http://www.modssl.org/source/ > ftp://ftp.modssl.org/source/ > Ralf S. Engelschall > [EMAIL PROTECTED] > www.engelschall.com > > Changes with mod_ssl 2.8.12 (04-Oct-2002 to 23-Oct-2002) > > *) Fixed potential Cross-Site-Scripting bug. > > *) Allow also 8192 bytes of shared memory data size. > ______________________________________________________________________ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] > ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
