)]}'
{
  "commit": "0c05e5b55fe799bb0d6330bcf75dbde370bf0ba6",
  "tree": "aa0174683c4bd7e41cdb385cc342c50c690d13e3",
  "parents": [
    "3925c1b110ef13a3e4130e95a06cc85594bc4494"
  ],
  "author": {
    "name": "Valentin Bartenev",
    "email": "vbart@nginx.com",
    "time": "Mon Mar 03 19:24:55 2014 +0400"
  },
  "committer": {
    "name": "Valentin Bartenev",
    "email": "vbart@nginx.com",
    "time": "Mon Mar 03 19:24:55 2014 +0400"
  },
  "message": "SPDY: fixed potential integer overflow while parsing headers.\n\nPreviously r-\u003eheader_size was used to store length for a part of\nvalue that represents an individual already parsed HTTP header,\nwhile r-\u003eheader_end pointed to the end of the whole value.\n\nInstead of storing length of a following name or value as pointer\nto a potential end address (r-\u003eheader_name_end and r-\u003eheader_end)\nthat might be overflowed, now r-\u003elowercase_index counter is used\nto store remaining length of a following unparsed field.\n\nIt also fixes incorrect $body_bytes_sent value if a request is\nclosed while parsing of the request header.  Since r-\u003eheader_size\nis intended for counting header size, thus abusing it for header\nparsing purpose was certainly a bad idea.\n",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "2b7b89f18537512054f15e3d20284acb5d120e8f",
      "old_mode": 33188,
      "old_path": "src/http/ngx_http_spdy.c",
      "new_id": "4005bfbe788bc55e3b899300bf9e6341cfe981c7",
      "new_mode": 33188,
      "new_path": "src/http/ngx_http_spdy.c"
    }
  ]
}