diff options
author | Krzysztof Grobelny <krzysztof.grobelny@intel.com> | 2022-08-24 10:24:33 +0300 |
---|---|---|
committer | Ed Tanous <edtanous@google.com> | 2022-10-05 05:07:38 +0300 |
commit | 18e3f7fb9d6888a09c0d5f5ab9275f314cc22b40 (patch) | |
tree | 862edbd8b38a6cc4b2cf9d062ded8f24313b6940 /scripts | |
parent | 22d268cb2c0bc00676d08c79f6ab8958bee74a25 (diff) | |
download | bmcweb-18e3f7fb9d6888a09c0d5f5ab9275f314cc22b40.tar.xz |
Fixed issues with multipart parser
- Index was not checked against size before dereference. Which cased to
override memory.
- Header without colon could put parser into invalid state. Now it will
return with error.
- Content after boundary was not correctly discarded.
- Parser did not check body for final boudary. Now missing final
boundary will return with error.
Tested:
- Tested that payload with header without colon doesn't cause memory
corruption anymore.
Signed-off-by: Krzysztof Grobelny <krzysztof.grobelny@intel.com>
Change-Id: I12f496ab5f53e6c088cdfdf2e96be636d66f7c7f
Diffstat (limited to 'scripts')
0 files changed, 0 insertions, 0 deletions