]> git.ipfire.org Git - thirdparty/pdns.git/commit
projects / thirdparty / pdns.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 7cf3179) | patch
YaHTTP: Prevent integer overflow on very large chunks 12892/head
authorRemi Gacogne <remi.gacogne@powerdns.com>
Wed, 8 Mar 2023 17:25:30 +0000 (18:25 +0100)
committerRemi Gacogne <remi.gacogne@powerdns.com>
Tue, 6 Jun 2023 19:50:07 +0000 (21:50 +0200)
commitb602982fc5b4fb9139dec591541e0c070ceb47f5
tree531e1e7b68ccc867a93eb68a2efb286a0b33cf46tree
parent7cf3179775b6bff11c027e6d1ff352ece7cfb924commit | diff
YaHTTP: Prevent integer overflow on very large chunks

If the chunk_size is very close to the maximum value of an integer,
we trigger an integer overflow when checking if we have a trailing
newline after the payload.
Reported by OSS-Fuzz as:
https://oss-fuzz.com/testcase-detail/6439610474692608
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56804
ext/yahttp/yahttp/reqresp.cpp diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.