URL regular expression DoS (CVE-2007-1349)
A flaw was discovered in the Apache::PerlRun module shipped with mod_perl 1.29 and earlier and in the ModPerl::RegistryCooker module shipped with mod_perl 2.03 and earlier. A remote attacker could craft a URL with a path that would be interpreted as a regular expression, potentially allowing a denial of service by creating an expression that will take a very long time to run. This vulnerability only affects Apache::PerlRun and custom subclasses of ModPerl::RegistryCooker that explicitly use the namespace_from_uri() method. The Apache::Registry, ModPerl::PerlRun, and ModPerl::Registry modules are NOT affected.

Users of mod_perl 1.29 and earlier are encouraged to upgrade to 1.30 if they use Apache::PerlRun for their applications. Users of mod_perl 2.03 are encouraged to check their custom code for calls to the namespace_from_uri() method and replace it with the namespace_from_filename() method.

Please note!
mod_perl-1.24_01.tar.gz or later is required for Apache >= 1.3.14. 

Icon  Name                    Last modified      Size  Description
[DIR] Parent Directory                             -   
[TXT] KEYS                    29-Nov-2006 10:36   35K  
[DIR] contrib/                26-Feb-1999 01:42    -   
[   ] mod_perl-1.28.tar.gz    02-Jul-2003 16:40  367K  
[TXT] mod_perl-1.28.tar.gz..> 02-Jul-2003 16:40  189   
[   ] mod_perl-1.29.tar.gz    08-Oct-2003 07:43  370K  
[TXT] mod_perl-1.29.tar.gz..> 08-Oct-2003 07:43  189   
[DIR] mod_perl-1.29/          08-Oct-2003 07:44    -   
[   ] mod_perl-1.30.tar.gz    30-Mar-2007 09:14  380K  
[TXT] mod_perl-1.30.tar.gz..> 30-Mar-2007 09:14  186   
[DIR] mod_perl-1.30/          30-Mar-2007 09:14    -   
[DIR] mod_perl-1.31/          24-May-2009 00:05    -   
[   ] mod_perl-2.0.2.tar.gz   21-Oct-2005 04:21  3.5M  
[TXT] mod_perl-2.0.2.tar.g..> 21-Oct-2005 04:21  187   
[DIR] mod_perl-2.0.2/         21-Oct-2005 03:38    -   
[   ] mod_perl-2.0.3.tar.gz   29-Nov-2006 10:32  3.5M  
[TXT] mod_perl-2.0.3.tar.g..> 29-Nov-2006 10:32  189   
[DIR] mod_perl-2.0.3/         29-Nov-2006 10:10    -   
[   ] mod_perl-2.0.4.tar.gz   17-Apr-2008 09:33  3.6M  
[TXT] mod_perl-2.0.4.tar.g..> 17-Apr-2008 09:33  186   
[DIR] mod_perl-2.0.4/         17-Apr-2008 09:20    -
Apache/2.0.55 (Unix) DAV/2 PHP/5.0.4 Server at apache.bilkent.edu.tr Port 80