hiawatha -- integer overflow in Content-Length header parsing

ID B13414C9-50BA-11E0-975A-000C29CC39D3
Type freebsd
Reporter FreeBSD
Modified 2011-02-25T00:00:00


Hugo Leisink reports:

A bug has been found in version 7.4 of the Hiawatha webserver, which could lead to a server crash. This is caused by an integer overflow in the routine that reads the HTTP request. A too large value of the Content-Length HTTP header results in an overflow.