Hi
On Tue, Sep 10, 2019 at 12:23:04PM +0200, Max Kellermann wrote:
> Package: libapreq2-3
> Version: 2.13-5+b3
> Severity: grave
>
> libapreq's multipart parser can be made dereference the null pointer
> by issuing a simple CURL command:
>
> curl http://a/b -F 'foo=bar;type=multipart/dummy'
>
Package: libapreq2-3
Version: 2.13-5+b3
Severity: grave
libapreq's multipart parser can be made dereference the null pointer
by issuing a simple CURL command:
curl http://a/b -F 'foo=bar;type=multipart/dummy'
This POSTs a "multipart/form-data" body where one part has the
Content-Type
2 matches
Mail list logo
