Users;
Please note the following clarification to the APR 1.4.4 release.
Whether this represents a security flaw to *your* application depends
on untrusted fnmatch patterns being applied to very long name strings,
the default stack size, and the impact of a stack overflow to the app.
Modified:
On 5/10/2011 10:02 AM, Mark J Cox wrote:
>> httpd 2.2.18 rolls in the next six hours, so to the extent that sharing
>> issues with apr/apr-util between httpd and svn is an issue for mod_dav_svn,
>> we should be in good shape midweek to broadcast any cautions and upgrade
>> advisories.
>
> So is th
