]> git.kaiwu.me - nginx.git/commit
Xslt: fixed potential buffer overflow with null character.
authorMaxim Dounin <mdounin@mdounin.ru>
Thu, 18 Jul 2019 15:27:54 +0000 (18:27 +0300)
committerMaxim Dounin <mdounin@mdounin.ru>
Thu, 18 Jul 2019 15:27:54 +0000 (18:27 +0300)
commit2187586207e1465d289ae64cedc829719a048a39
tree34475060fce3c07c764774604aa9127c872ef9eb
parentad42d70fed67c1e7098055fb25721ab904db2389
Xslt: fixed potential buffer overflow with null character.

Due to shortcomings of the ccv->zero flag implementation in complex value
interface, length of the resulting string from ngx_http_complex_value()
might either not include terminating null character or include it,
so the only safe way to work with the result is to use it as a
null-terminated string.

Reported by Patrick Wollgast.
src/http/modules/ngx_http_xslt_filter_module.c