git.ipfire.org Git - thirdparty/haproxy.git/commit

]> git.ipfire.org Git - thirdparty/haproxy.git/commit

projects / thirdparty / haproxy.git / commit

author	Willy Tarreau <w@1wt.eu>
	Fri, 17 Mar 2023 15:40:09 +0000 (16:40 +0100)
committer	Willy Tarreau <w@1wt.eu>
	Fri, 17 Mar 2023 15:43:51 +0000 (16:43 +0100)
commit	f41dfc22b20b2b5c295e8d80e062b896e7153b88
tree	e693e845b334cdde5de5a85e914ed8e07fe19f82	tree \| snapshot
parent	5b4e16ee2d809b9d7aeb72fdff8c330718659c73	commit \| diff

BUG/MAJOR: qpack: fix possible read out of bounds in static table

CertiK Skyfall Team reported that passing an index greater than
QPACK_SHT_SIZE in a qpack instruction referencing a literal field
name with name reference or and indexed field line will cause a
read out of bounds that may crash the process, and confirmed that
this fix addresses the issue.

This needs to be backported as far as 2.5.

src/qpack-dec.c

diff | blob | blame | history

Mirror of https://github.com/haproxy/haproxy.git

RSS Atom