aboutsummaryrefslogtreecommitdiff
path: root/tests/libtest/lib1535.c
diff options
context:
space:
mode:
authorDaniel Stenberg <daniel@haxx.se>2018-03-23 23:30:04 +0100
committerDaniel Stenberg <daniel@haxx.se>2018-05-14 07:40:31 +0200
commit583b42cb3b809b1bf597af160468ccba728c2248 (patch)
tree840ffd3a12601aa8af48500e79a41a10bd8db959 /tests/libtest/lib1535.c
parent8c7b3737d29ed5c0575bf592063de8a51450812d (diff)
pingpong: fix response cache memcpy overflow
Response data for a handle with a large buffer might be cached and then used with the "closure" handle when it has a smaller buffer and then the larger cache will be copied and overflow the new smaller heap based buffer. Reported-by: Dario Weisser CVE: CVE-2018-1000300 Bug: https://curl.haxx.se/docs/adv_2018-82c2.html
Diffstat (limited to 'tests/libtest/lib1535.c')
0 files changed, 0 insertions, 0 deletions