Fixed issues with multipart parser - BMC/OpenBmc/bmcweb.git - A do everything Redfish, KVM, GUI, and DBus webserver for OpenBMC (mirror)

diff options

author	Krzysztof Grobelny <krzysztof.grobelny@intel.com>	2022-08-24 10:24:33 +0300
committer	Ed Tanous <edtanous@google.com>	2022-10-05 05:07:38 +0300
commit	18e3f7fb9d6888a09c0d5f5ab9275f314cc22b40 (patch)
tree	862edbd8b38a6cc4b2cf9d062ded8f24313b6940 /scripts
parent	22d268cb2c0bc00676d08c79f6ab8958bee74a25 (diff)
download	bmcweb-18e3f7fb9d6888a09c0d5f5ab9275f314cc22b40.tar.xz

Fixed issues with multipart parser

- Index was not checked against size before dereference. Which cased to override memory. - Header without colon could put parser into invalid state. Now it will return with error. - Content after boundary was not correctly discarded. - Parser did not check body for final boudary. Now missing final boundary will return with error. Tested: - Tested that payload with header without colon doesn't cause memory corruption anymore. Signed-off-by: Krzysztof Grobelny <krzysztof.grobelny@intel.com> Change-Id: I12f496ab5f53e6c088cdfdf2e96be636d66f7c7f

Diffstat (limited to 'scripts')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: