+++ This bug was initially created as a clone of Bug #167102 +++ A flaw was found in Apache 2.0 where the byterange filter would buffer responses into memory. This could cause a Denial of Service through memory leak if a remote attacker sends carefully crafted requests to a web server that has a CGI script which usually would give a large response.
Note that this also affects any dynamic response generator such as PHP.
Will be async, marking as dupe of RHEL4 bug *** This bug has been marked as a duplicate of 167102 ***