|CVE 2018 1000872_Fix_a_denial of service_bug_by_setting_the_server_socket_timeout.patch | (download)
6 6 + 0 - 0 !
6 5 + 1 - 0 !
2 files changed, 11 insertions(+), 1 deletion(-)
cve-2018-1000872: fix a denial-of-service bug by setting the server socket timeout
This change fixes a potential denial-of-service bug with the
server, setting a default timeout for all server sockets. This
allows the server to drop hung connections without blocking
forever. The interrupt triggered during accept calls is expected
and is now handled appropriately. Server unit tests have been
updated to reflect this change.