https://issues.apache.org/bugzilla/show_bug.cgi?id=56289
Bug ID: 56289
Summary: Buffer overflow in mod_proxy_html's string replacement
can cause a segfault
Product: Apache httpd-2
Version: 2.5-HEAD
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: P2
Component: mod_proxy_html
Assignee: [email protected]
Reporter: [email protected]
Created attachment 31413
--> https://issues.apache.org/bugzilla/attachment.cgi?id=31413&action=edit
Fix string replacement segfault in mod_proxy_html
The attached patch fixes a buffer overflow in at least one of the six string
replacement implementations in mod_proxy_html.
Unfortunately I don't remember anymore how to reproduce the issue properly, but
I know that some long time ago I fixed a segfault with this patch.
The patch tries to address the buffer overflow by introducing a new function
preplace() dedicated to clean string replacement. This function is now used on
all six places where the error-prone string replacement was previously
implemented manually with memcpy() and memmove().
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
