On Tue, Jan 22, 2019 at 7:57 PM Dan Ehrlich wrote:
>
> Is this true?
>
> https://github.com/hannob/apache-uaf/blob/master/README.md
>
> Was this security vulnerability really treated with such disregard by Apache
> HTTPD devs?
I would personally characterize it differently, without calling what
Check the bugzilla thread for all the details:
https://bz.apache.org/bugzilla/show_bug.cgi?id=63098
The short version is that HTTPD developers found that the bug can only be
reproduced under specific conditions with debugging options turned on,
which is not the way people usually run the server
Is this true?
https://github.com/hannob/apache-uaf/blob/master/README.md
Was this security vulnerability really treated with such disregard by Apache
HTTPD devs?
I am aware the work that they do is free, but I contribute to plenty of open
source for free and take the responsibility very