[OpenSIPS-Devel] [OpenSIPS/opensips] 0b4f4a: parse_content_length(): Fix out-of-bounds read edg...
Liviu Chircu
noreply at github.com
Tue Feb 7 13:56:38 UTC 2023
Branch: refs/heads/3.1
Home: https://github.com/OpenSIPS/opensips
Commit: 0b4f4a5ba2faa76e63ef7ea9b2ca42564f4f0444
https://github.com/OpenSIPS/opensips/commit/0b4f4a5ba2faa76e63ef7ea9b2ca42564f4f0444
Author: Liviu Chircu <liviu at opensips.org>
Date: 2023-02-07 (Tue, 07 Feb 2023)
Changed paths:
M parser/parse_content.c
M parser/test/test_parser.c
Log Message:
-----------
parse_content_length(): Fix out-of-bounds read edge-case (OSS-Fuzz)
This patch fixes a possible off-by-one read overflow while parsing a bad
Content-Length header. The error was mostly harmless, as the supplied
buffer is typically much larger and is stored in PKG memory.
Severity: Low
Fixes OSS-Fuzz#53199
(cherry picked from commit a008e7c2385bcd83de2f9ab155ed8a9452bf3c5c)
More information about the Devel
mailing list