]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 05f6af2) | patch
Fix stack buffer overflow when parsing Digest Authorization (#1517)
authorsquidadm <squidadm@users.noreply.github.com>
Tue, 17 Oct 2023 15:50:56 +0000 (04:50 +1300)
committerGitHub <noreply@github.com>
Tue, 17 Oct 2023 15:50:56 +0000 (04:50 +1300)
commit052cf082b0faaef4eaaa4e94119d7a1437aac4a3
tree6081adbe6f7b3b40bbfc87a9f9aa1ba5d62b38abtree
parent05f6af2f4c85cc99323cfff6149c3d74af661b6dcommit | diff
Fix stack buffer overflow when parsing Digest Authorization (#1517)

The bug was discovered and detailed by Joshua Rogers at
https://megamansec.github.io/Squid-Security-Audit/digest-overflow.html
where it was filed as "Stack Buffer Overflow in Digest Authentication".

---------

Co-authored-by: Alex Bason <nonsleepr@gmail.com>
Co-authored-by: Amos Jeffries <yadij@users.noreply.github.com>
src/auth/digest/Config.cc diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git