Perlbal before 1.70, when buffered upload is enabled, allows remote attackers to cause a denial of service (crash) via a zero-byte chunked upload.
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00672.html
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00665.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/41538
https://bugzilla.redhat.com/show_bug.cgi?id=439054
http://www.vupen.com/english/advisories/2008/1045/references
http://www.securityfocus.com/bid/28491
http://secunia.com/advisories/29619
http://secunia.com/advisories/29565