File apache2-CVE-2021-39275.patch of Package apache2.21779
Index: httpd-2.4.43/server/util.c
===================================================================
--- httpd-2.4.43.orig/server/util.c 2020-02-11 14:19:05.000000000 +0100
+++ httpd-2.4.43/server/util.c 2021-09-21 13:34:39.722006310 +0200
@@ -2493,13 +2493,12 @@ AP_DECLARE(char *) ap_escape_quotes(apr_
* in front of every " that doesn't already have one.
*/
while (*inchr != '\0') {
- if ((*inchr == '\\') && (inchr[1] != '\0')) {
- *outchr++ = *inchr++;
- *outchr++ = *inchr++;
- }
if (*inchr == '"') {
*outchr++ = '\\';
}
+ if ((*inchr == '\\') && (inchr[1] != '\0')) {
+ *outchr++ = *inchr++;
+ }
if (*inchr != '\0') {
*outchr++ = *inchr++;
}