Hello, *** Ryan Schulze wrote:
> I think I may have stumbled over a false positive today. > gb_apache_etag_6939.nasl checks Apache responses for the ETag header > and it seems to try to split() the whole header and not just the > Value of the ETag (which then leads to the array being bigger than > intended and triggering max_index()). Not sure if this is the best > way to solve the problem (since I've never played around with .nasl > files before), but seems to work with the servers I tested it > against here. > > -etag = split(etag, sep:"-",keep:FALSE); > +etag = split(etag[1], sep:"-",keep:FALSE); Yes, you are right. Thanks for reporting and the patch. Best Regards, Micha -- Michael Meyer OpenPGP Key: 52A6EFA6 http://www.greenbone.net/ Greenbone Networks GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 202460 Geschäftsführer: Lukas Grunwald, Dr. Jan-Oliver Wagner _______________________________________________ Openvas-discuss mailing list [email protected] http://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
