neon -- NULL pointer dereference in Digest domain support

ID 755FA519-80A9-11DD-8DE5-0030843D3802
Type freebsd
Reporter FreeBSD
Modified 2008-08-15T00:00:00


Joe Orton reports:

A NULL pointer deference in the Digest authentication support in neon versions 0.28.0 through 0.28.2 inclusive allows a malicious server to crash a client application, resulting in possible denial of service.