]> git.ipfire.org Git - thirdparty/squid.git/commit
projects / thirdparty / squid.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 57dcdee) | patch
cachemgr.cgi: Memory Leaks and DoS Vulnerability
authorAmos Jeffries <squid3@treenet.co.nz>
Thu, 29 Nov 2012 11:15:32 +0000 (04:15 -0700)
committerAmos Jeffries <squid3@treenet.co.nz>
Thu, 29 Nov 2012 11:15:32 +0000 (04:15 -0700)
commit184056c798a01706a93fe57cdd3febbea7a01fd2
tree22b2cb53ea019f05fef01eea0126b1cdf1171b7etree
parent57dcdeec0ba5f0ef2b3012aff4866bdab976aa1fcommit | diff
cachemgr.cgi: Memory Leaks and DoS Vulnerability

* Ignore invalid Content-Length headers.

* Limit received POST requests to 4KB and discard the rest.

* Authentication credentials parser also leaks badly.

 Detected by Coverity Scan.
 Issues 740380, 740443, 740444, 740442, 740487, 740446, 740445
tools/cachemgr.cc diff | blob | blame | history
Mirror of https://github.com/squid-cache/squid.git