]> git.ipfire.org Git - thirdparty/pdns.git/commit
projects / thirdparty / pdns.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 21b255f) | patch
YaHTTP: Prevent integer overflow on very large chunks 13079/head
authorRemi Gacogne <remi.gacogne@powerdns.com>
Wed, 8 Mar 2023 17:25:30 +0000 (18:25 +0100)
committerOtto Moerbeek <otto.moerbeek@open-xchange.com>
Wed, 26 Jul 2023 08:02:32 +0000 (10:02 +0200)
commitb398752f0c91f318ff9bee80bf15c0d90f9a8a4a
tree52595a989cfc1746e4274170b5933e670c9f0793tree
parent21b255f57931de7c69a0c3b7f4e7e0adb7f50dc3commit | diff
YaHTTP: Prevent integer overflow on very large chunks

If the chunk_size is very close to the maximum value of an integer,
we trigger an integer overflow when checking if we have a trailing
newline after the payload.
Reported by OSS-Fuzz as:
https://oss-fuzz.com/testcase-detail/6439610474692608
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56804

(cherry picked from commit b602982fc5b4fb9139dec591541e0c070ceb47f5)
ext/yahttp/yahttp/reqresp.cpp diff | blob | blame | history
Unnamed repository; edit this file 'description' to name the repository.