0518b16c6c9c33dc2d983615de3e71d3ea1c59a0 - nginx

commit	0518b16c6c9c33dc2d983615de3e71d3ea1c59a0	[log] [tgz]
author	Piotr Sikora <piotrsikora@google.com>	Fri Feb 26 17:30:27 2016 -0800
committer	Piotr Sikora <piotrsikora@google.com>	Fri Feb 26 17:30:27 2016 -0800
tree	7eda6be9f9564655caad621664e24f1a06b4e0f5
parent	a08e89b4f35916adc0c971088d0d8d1353ea4cd7 [diff]

Core: allow strings without null-termination in ngx_parse_url().

This fixes buffer over-read while using variables in the "proxy_pass",
"fastcgi_pass", "scgi_pass", and "uwsgi_pass" directives, where result
of string evaluation isn't null-terminated.

Found with MemorySanitizer.

Signed-off-by: Piotr Sikora <piotrsikora@google.com>

src/core/ngx_inet.c[diff]

1 file changed

tree: 7eda6be9f9564655caad621664e24f1a06b4e0f5

auto/
conf/
contrib/
docs/
misc/
src/
.hgtags