httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From grega...@apache.org
Subject cvs commit: httpd-2.0/server protocol.c
Date Tue, 10 Dec 2002 02:56:27 GMT
gregames    2002/12/09 18:56:27

  Modified:    server   protocol.c
  Log:
  prevent a potential seg fault in ap_escape_html if a header field is too
  long.
  
  Revision  Changes    Path
  1.123     +2 -0      httpd-2.0/server/protocol.c
  
  Index: protocol.c
  ===================================================================
  RCS file: /home/cvs/httpd-2.0/server/protocol.c,v
  retrieving revision 1.122
  retrieving revision 1.123
  diff -u -r1.122 -r1.123
  --- protocol.c	3 Dec 2002 08:38:45 -0000	1.122
  +++ protocol.c	10 Dec 2002 02:56:26 -0000	1.123
  @@ -778,6 +778,8 @@
               || (rv == APR_SUCCESS 
                   && len > (apr_size_t)r->server->limit_req_fieldsize))
{
               r->status = HTTP_BAD_REQUEST;
  +            /* insure ap_escape_html will terminate correctly */
  +            field[r->server->limit_req_fieldsize] = '\0';
               apr_table_setn(r->notes, "error-notes",
                              apr_pstrcat(r->pool,
                                          "Size of a request header field "
  
  
  

Mime
View raw message