This patch fixes a possible denial of service attack that could 
result in httpd processes using a large amount of CPU on your
system when requests with many '/'s are made.

A new release will be available within a week that includes this patch.

Index: util.c
===================================================================
RCS file: /export/home/cvs/apache/src/util.c,v
retrieving revision 1.52.2.2
retrieving revision 1.52.2.3
diff -c -r1.52.2.2 -r1.52.2.3
*** util.c	1997/06/27 01:47:47	1.52.2.2
--- util.c	1997/12/30 18:59:32	1.52.2.3
***************
*** 328,341 ****
      }
  } 
  
! void no2slash(char *name) {
!     register int x,y;
  
!     for(x=0; name[x];)
!         if(x && (name[x-1] == '/') && (name[x] == '/'))
!             for(y=x+1;name[y-1];y++)
!                 name[y-1] = name[y];
! 	else x++;
  }
  
  char *make_dirstr(pool *p, const char *s, int n) {
--- 328,349 ----
      }
  } 
  
! void no2slash(char *name)
! {
!     char *d, *s;
  
!     s = d = name;
!     while (*s) {
!         if ((*d++ = *s) == '/') {
!             do {
!                 ++s;
!             } while (*s == '/');
!         }
!         else {
!             ++s;
!         }
!     }
!     *d = '\0';
  }
  
  char *make_dirstr(pool *p, const char *s, int n) {