about summary refs log tree commit diff
path: root/parsing.c
diff options
context:
space:
mode:
authorJason A. Donenfeld <Jason@zx2c4.com>2015-11-24 11:28:00 +0100
committerJason A. Donenfeld <Jason@zx2c4.com>2015-11-24 11:31:43 +0100
commit4458abf64172a62b92810c2293450106e6dfc763 (patch)
tree92a3f3587e85c11c77d11769a45d55ddb2fd81a6 /parsing.c
parentabout-formatting.sh: comment text out of date (diff)
downloadcgit-pink-4458abf64172a62b92810c2293450106e6dfc763.tar.gz
cgit-pink-4458abf64172a62b92810c2293450106e6dfc763.zip
filter: avoid integer overflow in authenticate_post
ctx.env.content_length is an unsigned int, coming from the
CONTENT_LENGTH environment variable, which is parsed by strtoul. The
HTTP/1.1 spec says that "any Content-Length greater than or equal to
zero is a valid value." By storing this into an int, we potentially
overflow it, resulting in the following bounding check failing, leading
to a buffer overflow.

Reported-by: Erik Cabetas <Erik@cabetas.com>
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Diffstat (limited to '')
0 files changed, 0 insertions, 0 deletions
 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-11-16 12:04:46 +0000


 




2022-07-26Rewrite glitch from new pngoJune McEnroe


2022-07-26Update Care with time-to-ID and piercingsJune McEnroe


2022-07-26Add -w to upJune McEnroe


2022-07-13Set push.autoSetupRemoteJune McEnroe


2022-07-08Remove TOURJune McEnroe

There is not that much distinct stuff here anymore.



2022-07-03Add The Bone Shard EmperorJune McEnroe

Suffers a little bit from middle book but I really enjoyed it. Read
it faster than the first one too, despite its length.



2022-06-25Bump xterm font size to 12June McEnroe


2022-06-10Handle subshells (and functions) inside substitutionsJune McEnroe


2022-06-10Switch to jorts Install scriptJune McEnroe


2022-06-08Indicate if still reading or no resultsJune McEnroe


2022-06-08Add Maiden, Mother, CroneJune McEnroe

Mixed bag like most collections of short stories. Some of them are
pretty good. The author of the worst written story also has the
worst written bio.



2022-06-05FIRST SHOW IN 2.5 YEARS BABEY!!!June McEnroe


2022-06-03Set line number on File linesJune McEnroe


2022-06-03Stop polling stdin after EOFJune McEnroe


2022-06-02Set TABSIZE=4June McEnroe

Absolutely indiscriminately.



2022-06-02Do basic match highlightingJune McEnroe


2022-06-02Clean up parsing a littleJune McEnroe


2022-06-02Don't duplicate path stringJune McEnroe


2022-06-02Use stderr instead of /dev/tty, realloc buffer if lines too longJune McEnroe

For some reason I haven't been able to figure out, trying to poll
/dev/tty returns POLLNVAL (and this was using 100% CPU looping),
but using stderr instead works fine.



2022-06-02Add initial working version of qfJune McEnroe


2022-05-29Set prompt for okshJune McEnroe