details: http://hg.nginx.org/njs/rev/a782bc08b927 branches: changeset: 350:a782bc08b927 user: Dmitry Volyntsev <xei...@nginx.com> date: Wed May 31 20:42:15 2017 +0300 description: Fixed possible buffer overrun during numbers parsing.
diffstat: njs/njs_number.c | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diffs (12 lines): diff -r 559d256dd65b -r a782bc08b927 njs/njs_number.c --- a/njs/njs_number.c Wed May 31 20:36:01 2017 +0300 +++ b/njs/njs_number.c Wed May 31 20:42:15 2017 +0300 @@ -101,7 +101,7 @@ njs_number_dec_parse(u_char **start, u_c p++; } - if (*p == '.') { + if (p < end && *p == '.') { frac = 0; scale = 1; _______________________________________________ nginx-devel mailing list nginx-devel@nginx.org http://mailman.nginx.org/mailman/listinfo/nginx-devel