| commit | 8d93e345418ca1a9e3bc5a1339490728af6a0b57 | [log] [tgz] |
|---|---|---|
| author | Maxim Dounin <mdounin@mdounin.ru> | Thu Jul 18 18:27:53 2019 +0300 |
| committer | Maxim Dounin <mdounin@mdounin.ru> | Thu Jul 18 18:27:53 2019 +0300 |
| tree | 6748017ca7433b1712daa1b88307eca271c2018b | |
| parent | 617bc03863317b8c126efcb8ea8bdb53ccab062f [diff] |
SSI: avoid potential buffer overflow. When "-" follows a parameter of maximum length, a single byte buffer overflow happens, since the error branch does not check parameter length. Fix is to avoid saving "-" to the parameter key, and instead use an error message with "-" explicitly written. The message is mostly identical to one used in similar cases in the preequal state. Reported by Patrick Wollgast.