Re: httpd/slowcgi - httpoxy vurnerability

Good. Now take the steps to fix the problem you've created. Further reading at https://httpoxy.org On Jul 21, 2016 21:54, "Jiri B" wrote: Hi, Red Hat found a vulnerability in various web servers and frameworks related to env variable passed to cgi scripts, see below: HTTPoxy

httpd/slowcgi - httpoxy vurnerability

Hi, Red Hat found a vulnerability in various web servers and frameworks related to env variable passed to cgi scripts, see below: HTTPoxy - CGI "HTTP_PROXY" variable name clash https://access.redhat.com/security/vulnerabilities/httpoxy I was able to reproduce on OpenBSD httpd/slowcgi