[OpenSIPS-Devel] [OpenSIPS/opensips] a008e7: parse_content_length(): Fix out-of-bounds read edg...
Liviu Chircu
noreply at github.com
Fri Nov 11 18:42:24 UTC 2022
Branch: refs/heads/master
Home: https://github.com/OpenSIPS/opensips
Commit: a008e7c2385bcd83de2f9ab155ed8a9452bf3c5c
https://github.com/OpenSIPS/opensips/commit/a008e7c2385bcd83de2f9ab155ed8a9452bf3c5c
Author: Liviu Chircu <liviu at opensips.org>
Date: 2022-11-11 (Fri, 11 Nov 2022)
Changed paths:
M parser/parse_content.c
M parser/test/test_parser.c
Log Message:
-----------
parse_content_length(): Fix out-of-bounds read edge-case (OSS-Fuzz)
This patch fixes a possible off-by-one read overflow while parsing a bad
Content-Length header. The error was mostly harmless, as the supplied
buffer is typically much larger and is stored in PKG memory.
Severity: Low
Fixes OSS-Fuzz#53199
More information about the Devel
mailing list