]> git.ipfire.org Git - thirdparty/sqlite.git/commit
projects / thirdparty / sqlite.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9a6d01b) | patch
Prevent the printf formatter from doing large memory allocations - larger
authordrh <drh@noemail.net>
Fri, 1 Feb 2019 20:29:04 +0000 (20:29 +0000)
committerdrh <drh@noemail.net>
Fri, 1 Feb 2019 20:29:04 +0000 (20:29 +0000)
commit2964225247f1b9418aef50a042b2997edb3b6ad6
tree335381faa99757e2e4c3985353abad2e9e3379eftree | snapshot
parent9a6d01bff53cc0dd705f8d73525774d5cde52cb9commit | diff
Prevent the printf formatter from doing large memory allocations - larger
than either the size of the static buffer for interfaces like
sqlite3_snprintf(), or larger than SQLITE_LIMIT_LENGTH for interfaces that
are associated with a database connection.  This helps to prevent DOS
attacks on products that let hostile sources inject arbitrary SQL.  It also
helps fuzzers run faster and more effectively.

FossilOrigin-Name: 179e5d46054e5c86f53a79b7a0823d9a383da8391ad1d3c3b22645927a1e052b
manifest diff | blob | blame | history
manifest.uuid diff | blob | blame | history
src/printf.c diff | blob | blame | history
Mirror of https://github.com/sqlite/sqlite.git