Mandriva, Inc. Information for VU#944335

Apache web servers fail to handle chunks with a negative size

Status

Affected

Vendor Statement

The Apache webserver shipped with Conectiva Linux is vulnerable to this problem. New packages fixing this problem will be announced to our mailing list after an official fix becomes available.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

A Conectiva security announcement is avilable at: