diff options
| author | CoprDistGit <infra@openeuler.org> | 2024-08-06 02:28:51 +0000 |
|---|---|---|
| committer | CoprDistGit <infra@openeuler.org> | 2024-08-06 02:28:51 +0000 |
| commit | ec4b0240a453aa667ff764590f05c0296eefbf9f (patch) | |
| tree | ee45a079b9bc9a28e6d936917f8701237c7dc2ea /cve-2023-27371.patch | |
| parent | 529d13a4d62bcd4da7e3fc25c852bffdeeafdb37 (diff) | |
automatic import of libmicrohttpdopeneuler24.03_LTS
Diffstat (limited to 'cve-2023-27371.patch')
| -rw-r--r-- | cve-2023-27371.patch | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/cve-2023-27371.patch b/cve-2023-27371.patch new file mode 100644 index 0000000..fa85125 --- /dev/null +++ b/cve-2023-27371.patch @@ -0,0 +1,15 @@ +diff --git a/src/microhttpd/postprocessor.c b/src/microhttpd/postprocessor.c +index 99074215..c00605c7 100644 +--- a/src/microhttpd/postprocessor.c ++++ b/src/microhttpd/postprocessor.c +@@ -83,7 +83,7 @@ MHD_create_post_processor (struct MHD_Connection *connection, + return NULL; /* failed to determine boundary */ + boundary += MHD_STATICSTR_LEN_ ("boundary="); + blen = strlen (boundary); +- if ( (blen == 0) || ++ if ( (blen < 2) || + (blen * 2 + 2 > buffer_size) ) + return NULL; /* (will be) out of memory or invalid boundary */ + if ( (boundary[0] == '"') && +-- +cgit v1.2.3 |