Blame SOURCES/httpd-2.4.6-CVE-2013-4352.patch
|
 |
8d96ca |
--- a/modules/cache/cache_storage.c 2013/09/14 13:30:39 1523234
|
|
|
8d96ca |
+++ b/modules/cache/cache_storage.c 2013/09/14 13:32:25 1523235
|
|
|
8d96ca |
@@ -713,7 +713,9 @@
|
|
|
8d96ca |
|| APR_SUCCESS
|
|
|
8d96ca |
!= cache_canonicalise_key(r, r->pool, location,
|
|
|
8d96ca |
&location_uri, &location_key)
|
|
|
8d96ca |
- || strcmp(r->parsed_uri.hostname, location_uri.hostname)) {
|
|
|
8d96ca |
+ || !(r->parsed_uri.hostname && location_uri.hostname
|
|
|
8d96ca |
+ && !strcmp(r->parsed_uri.hostname,
|
|
|
8d96ca |
+ location_uri.hostname))) {
|
|
|
8d96ca |
location_key = NULL;
|
|
|
8d96ca |
}
|
|
|
8d96ca |
}
|
|
|
8d96ca |
@@ -726,8 +728,9 @@
|
|
|
8d96ca |
|| APR_SUCCESS
|
|
|
8d96ca |
!= cache_canonicalise_key(r, r->pool, content_location,
|
|
|
8d96ca |
&content_location_uri, &content_location_key)
|
|
|
8d96ca |
- || strcmp(r->parsed_uri.hostname,
|
|
|
8d96ca |
- content_location_uri.hostname)) {
|
|
|
8d96ca |
+ || !(r->parsed_uri.hostname && content_location_uri.hostname
|
|
|
8d96ca |
+ && !strcmp(r->parsed_uri.hostname,
|
|
|
8d96ca |
+ content_location_uri.hostname))) {
|
|
|
8d96ca |
content_location_key = NULL;
|
|
|
8d96ca |
}
|
|
|
8d96ca |
}
|