From owner-freebsd-questions@FreeBSD.ORG Wed May 14 11:25:14 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 69C2037B401 for ; Wed, 14 May 2003 11:25:14 -0700 (PDT) Received: from smtp.infracaninophile.co.uk (smtp.infracaninophile.co.uk [81.2.69.218]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1C68343FA3 for ; Wed, 14 May 2003 11:25:12 -0700 (PDT) (envelope-from m.seaman@infracaninophile.co.uk) Received: from happy-idiot-talk.infracaninophile.co.uk (localhost [127.0.0.1]) h4EIP7JG069985 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 14 May 2003 19:25:07 +0100 (BST) (envelope-from matthew@happy-idiot-talk.infracaninophile.co.uk) Received: (from matthew@localhost)h4EIP7VQ069984; Wed, 14 May 2003 19:25:07 +0100 (BST) (envelope-from matthew) Date: Wed, 14 May 2003 19:25:07 +0100 From: Matthew Seaman To: Sunil Sunder Raj Message-ID: <20030514182507.GC69479@happy-idiot-talk.infracaninophile.co.uk> Mail-Followup-To: Matthew Seaman , Sunil Sunder Raj , freebsd-questions@freebsd.org References: Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="LwW0XdcUbUexiWVK" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.5.4i X-Spam-Status: No, hits=-35.6 required=5.0 tests=EMAIL_ATTRIBUTION,IN_REP_TO,PGP_SIGNATURE_2,REFERENCES, REPLY_WITH_QUOTES,USER_AGENT_MUTT version=2.53 X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp) cc: freebsd-questions@freebsd.org Subject: Re: Php apachec problem X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 May 2003 18:25:14 -0000 --LwW0XdcUbUexiWVK Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, May 14, 2003 at 06:59:37PM +0530, Sunil Sunder Raj wrote: > Hi, > Has anybody gone through these errors. >=20 > httpd in free(): warning: chunk is already free. > httpd in free(): warning: recursive call. >=20 > thousands of these in the httpd.conf file. Sounds like someone trying to exploit last year's apache chunked transfer encoding bug. See: http://www.cert.org/advisories/CA-2002-17.html http://httpd.apache.org/info/security_bulletin_20020617.txt http://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCAN-2002-0392 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A04.asc Make sure you're running a more recent version than apache-1.3.26 or apache-2.0.39 and you're immune. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK --LwW0XdcUbUexiWVK Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (FreeBSD) iD8DBQE+wooDdtESqEQa7a0RApeOAJ4uUzI6/FJdO+dQNPw2us4+UynTfQCgkvvp DHJr/7M4iy3fGMtfXBEHl9E= =o2z3 -----END PGP SIGNATURE----- --LwW0XdcUbUexiWVK--