IntenseWebs/nginx
3
0
Fork 0
mirror of https://github.com/nginx/nginx.git synced 2025-02-25 18:55:26 -06:00
Code Issues Packages Projects Releases Wiki Activity
4,818 Commits 21 Branches 570 Tags
0c05e5b55fe799bb0d6330bcf75dbde370bf0ba6
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Valentin Bartenev 0c05e5b55f SPDY: fixed potential integer overflow while parsing headers. 
Previously r->header_size was used to store length for a part of
value that represents an individual already parsed HTTP header,
while r->header_end pointed to the end of the whole value.

Instead of storing length of a following name or value as pointer
to a potential end address (r->header_name_end and r->header_end)
that might be overflowed, now r->lowercase_index counter is used
to store remaining length of a following unparsed field.

It also fixes incorrect $body_bytes_sent value if a request is
closed while parsing of the request header.  Since r->header_size
is intended for counting header size, thus abusing it for header
parsing purpose was certainly a bad idea.
2014-03-03 19:24:55 +04:00
auto
Win32: MSVC 2013 compatibility.
2014-02-13 16:54:00 +04:00
conf
MIME: added application/json MIME type.
2013-09-18 12:59:47 -07:00
contrib
Contrib: added vim to README.
2013-12-06 19:58:27 +04:00
docs
Docs: xslt regenerated.
2014-02-28 20:17:01 +04:00
misc
Updated PCRE used for win32 builds.
2014-02-04 07:45:33 +04:00
src
SPDY: fixed potential integer overflow while parsing headers.
2014-03-03 19:24:55 +04:00
.hgtags
release-1.5.10 tag
2014-02-04 16:26:46 +04:00
Description
An official read-only mirror of http://hg.nginx.org/nginx/ which is updated hourly. Pull requests on GitHub cannot be accepted and will be automatically closed. The proper way to submit changes to nginx is via the nginx development mailing list, see http://nginx.org/en/docs/contributing_changes.html
78 MiB
Languages
C 97.6%
Vim Script 1.8%
XS 0.4%
Perl 0.1%