Red Hat Bugzilla – Bug 130749
CAN-2004-0748 Apache child infinite loop
Last modified: 2007-11-30 17:07:03 EST
Apache bug 29964 is "A remote attacker who forces an SSL connection to
be aborted in a particular state may cause an Apache child process to
enter an infinite loop, consuming CPU resources." Fixed upstream
Aug11. This doesn't affect mod_ssl with Apache 1.3
RHSA-2004:349 in progress, will be part of RHEL3 Update 3.
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.