2190137 – mod_rewrite regression with CVE-2023-25690

Bug 2190137 - mod_rewrite regression with CVE-2023-25690

Summary: mod_rewrite regression with CVE-2023-25690

Keywords:
Status:	VERIFIED
Alias:	None
Product:	Red Hat Enterprise Linux 9
Classification:	Red Hat
Component:	httpd
Sub Component:
Version:	9.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	unspecified
Target Milestone:	rc
Target Release:	---
Assignee:	Luboš Uhliarik
QA Contact:	Branislav Náter
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	2190325 2190324 2190326
TreeView+	depends on / blocked

Reported:	2023-04-27 09:37 UTC by Joe Orton
Modified:	2023-07-18 15:53 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Clones:	2190324 2190325 2190326 (view as bug list)
Environment:
Last Closed:
Type:	Bug
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	RHELPLAN-155927	0	None	None	None	2023-04-27 09:38:56 UTC

Description Joe Orton 2023-04-27 09:37:38 UTC

Description of problem:
Regression in query string handling with mod_rewrite due to CVE-2023-25690.

mod_rewrite BCTLS and BNE flags should also be added to allow finer control of escaping behaviour in rewrites, mitigating issues with certain configurations.

https://svn.apache.org/viewvc?view=revision&revision=1908301

Version-Release number of selected component (if applicable):
httpd-2.4.37-51.2

How reproducible:
always

Steps to Reproduce:
See https://bz.apache.org/bugzilla/show_bug.cgi?id=66547

Note You need to log in before you can comment on or make changes to this bug.