Files · c0687acbf6094053834af6a20e9d71b455842c8c · Linshizhi / ffmpeg.wasm-core

http: avoid out of bound accesses on broken Set-Cookie headers · c0687acb

wm4 authored Mar 08, 2018

It's trivial to craft a HTTP response that will make the code for
skipping trailing whitespace access and possibly overwrite bytes outside
of the memory allocation. Why this can happen is blindingly obvious: it
accesses cstr[strlen(cstr)-1] without checking whether the string is
empty.

c0687acb

Name	Last commit	Last update
compat		Loading commit data...
doc		Loading commit data...
ffbuild		Loading commit data...
fftools		Loading commit data...
libavcodec		Loading commit data...
libavdevice		Loading commit data...
libavfilter		Loading commit data...
libavformat		Loading commit data...
libavresample		Loading commit data...
libavutil		Loading commit data...
libpostproc		Loading commit data...
libswresample		Loading commit data...
libswscale		Loading commit data...
presets		Loading commit data...
tests		Loading commit data...
tools		Loading commit data...
.gitattributes		Loading commit data...
.gitignore		Loading commit data...
.travis.yml		Loading commit data...
CONTRIBUTING.md		Loading commit data...
COPYING.GPLv2		Loading commit data...
COPYING.GPLv3		Loading commit data...
COPYING.LGPLv2.1		Loading commit data...
COPYING.LGPLv3		Loading commit data...
CREDITS		Loading commit data...
Changelog		Loading commit data...
INSTALL.md		Loading commit data...
LICENSE.md		Loading commit data...
MAINTAINERS		Loading commit data...
Makefile		Loading commit data...
README.md		Loading commit data...
RELEASE		Loading commit data...
configure		Loading commit data...

README.md