Source-Changes archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
CVS commit: [netbsd-7] src/common/lib/libprop
Module Name: src
Committed By: snj
Date: Sat May 16 18:02:14 UTC 2015
Modified Files:
src/common/lib/libprop [netbsd-7]: prop_kern.c prop_object.c
prop_object_impl.h
Log Message:
Pull up following revision(s) (requested by christos in ticket #782):
common/lib/libprop/prop_kern.c: revision 1.19
common/lib/libprop/prop_object.c: revision 1.30
common/lib/libprop/prop_object_impl.h: revision 1.32
Limit size of xml buffer for userland requests (From Mateusz Kocielski)
--
Don't treat NUL (EOF) as SPACE. All the code that uses _PROP_ISSPACE() checks
explicitly for _PROP_EOF() anyway, and this can be abused to cause run beyond
the end of buffer DoS (Mateusz Kocielski)
--
Now that _PROP_ISSPACE does not include the EOF check, put the check for
EOF inside the loop. Also fix another unbounded loop that did not check for
EOF. From Mateusz Kocielski
To generate a diff of this commit:
cvs rdiff -u -r1.17.22.1 -r1.17.22.2 src/common/lib/libprop/prop_kern.c
cvs rdiff -u -r1.29 -r1.29.4.1 src/common/lib/libprop/prop_object.c
cvs rdiff -u -r1.31 -r1.31.12.1 src/common/lib/libprop/prop_object_impl.h
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
Home |
Main Index |
Thread Index |
Old Index