about summary refs log tree commit diff
path: root/scan-tree.h
diff options
context:
space:
mode:
authorJim Meyering <meyering@redhat.com>2011-02-28 12:18:57 +0100
committerLars Hjemli <hjemli@gmail.com>2011-03-05 13:38:34 +0100
commitfc384b16fb9787380746000d3cea2d53fccc548e (patch)
treed0a77d911c111e49904ab2f5061af22417f2b698 /scan-tree.h
parentui-shared: silence warning (diff)
downloadcgit-pink-fc384b16fb9787380746000d3cea2d53fccc548e.tar.gz
cgit-pink-fc384b16fb9787380746000d3cea2d53fccc548e.zip
do not infloop on a query ending in %XY, for invalid hex X or Y
When a query ends in say %gg, (or any invalid hex) e.g.,
http://git.gnome.org/browse/gdlmm/commit/?id=%gg
convert_query_hexchar calls memmove(txt, txt+3, 0), and then returns
txt-1, so the loop in http_parse_querystring never terminates.  The
solution is to make the memmove also copy the trailing NUL.
* html.c (convert_query_hexchar): Fix off-by-one error.

Signed-off-by: Lars Hjemli <hjemli@gmail.com>
Diffstat (limited to 'scan-tree.h')
0 files changed, 0 insertions, 0 deletions
 

generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-10-02 05:36:47 +0000


 


n title='2013-05-22 12:53:06 +0200'>2013-05-22tests: introduce strip_header() helper functionJohn Keeping
2013-05-22shared.c: use die_errno() where appropriateJohn Keeping
2013-05-22html.c: die when write failsJohn Keeping
2013-05-22ui-log: add <span/> around commit decorationsJohn Keeping
2013-05-22Makefile: fix parallel "make test"John Keeping
2013-05-18cache.c: fix cache_lsJohn Keeping
2013-05-13t0109: "function" is a bash-ismJohn Keeping
2013-05-13New mailing list.Jason A. Donenfeld
2013-04-30ui-snapshot: do not access $HOMEJason A. Donenfeld
2013-04-27t0001: validate Git -rcN version numbers correctlyJohn Keeping
2013-04-27git: update to 1.8.2.2John Keeping
2013-04-17scan-tree: fix regression in section-from-path=-1John Keeping
2013-04-15t0001: ignore ".dirty" suffix on Git versionJohn Keeping
2013-04-15tests: set TEST_OUTPUT_DIRECTORY to the CGit test directoryJohn Keeping
2013-04-15t0109: test more URLsJohn Keeping
2013-04-10cgitrc.5.txt: Specify when scan-path must be defined before.Jason A. Donenfeld
2013-04-10ui-snapshot.c: Prepend "V" when guessing ref namesLukas Fleischer
2013-04-10t0107: Skip ZIP tests if unzip(1) isn't availableLukas Fleischer
2013-04-10tests/: Do not use `sed -i`Lukas Fleischer
2013-04-10Add branch-sort and repo.branch-sort options.Jason A. Donenfeld
2013-04-10t0109: chain operations with &&John Keeping
2013-04-10cgit.c: Do not restore unset environment variablesLukas Fleischer
2013-04-09t0107: Use `tar -z` for gzip'ed archivesLukas Fleischer