URL regular expression DoS (CVE-2007-1349)
A flaw was discovered in the Apache::PerlRun module shipped with mod_perl 1.29 and earlier and in the ModPerl::RegistryCooker module shipped with mod_perl 2.03 and earlier. A remote attacker could craft a URL with a path that would be interpreted as a regular expression, potentially allowing a denial of service by creating an expression that will take a very long time to run. This vulnerability only affects Apache::PerlRun and custom subclasses of ModPerl::RegistryCooker that explicitly use the namespace_from_uri() method. The Apache::Registry, ModPerl::PerlRun, and ModPerl::Registry modules are NOT affected.

Users of mod_perl 1.29 and earlier are encouraged to upgrade to 1.30 if they use Apache::PerlRun for their applications. Users of mod_perl 2.03 are encouraged to check their custom code for calls to the namespace_from_uri() method and replace it with the namespace_from_filename() method.

Please note!
mod_perl-1.24_01.tar.gz or later is required for Apache >= 1.3.14.

 Name                      Last modified      Size  Description
 Parent Directory                               -   Perl project
 mod_perl-1.31/            2009-05-12 02:04    -   Perl project
 mod_perl-2.0.7/           2012-06-06 02:18    -   Perl project
 mod_perl-2.0.8/           2013-04-18 01:59    -   Perl project
 mod_perl-1.31.tar.gz.asc  2009-05-13 02:32  194   PGP signature
 mod_perl-1.31.tar.gz      2009-05-13 02:32  381K  Perl project
 KEYS                      2011-02-03 20:36   39K  Developer PGP/GPG keys
 mod_perl-2.0.6.tar.gz     2012-04-25 15:34  3.6M  Perl project
 mod_perl-2.0.6.tar.gz.asc 2012-04-25 15:34  495   PGP signature
 mod_perl-2.0.7.tar.gz     2012-06-06 02:42  3.6M  Perl project
 mod_perl-2.0.7.tar.gz.asc 2012-06-06 02:42  495   PGP signature
 mod_perl-2.0.8.tar.gz     2013-04-18 02:13  3.6M  Perl project
 mod_perl-2.0.8.tar.gz.asc 2013-04-18 02:13  495   PGP signature