pacman

History

Allan McRae 3bad984871 Avoid information leakage with badly formed download header Parsing of Content-Disposition relies on well formed headers. A malformed header such as: Content-Disposition=""; will result in a strnduppayload->content_disp_name, -1, ptr), which will copy memory until it hits a \0. Prevent this by only copying the value if it exists. Fixes FS#73704. Signed-off-by: Allan McRae <allan@archlinux.org> (cherry picked from commit `40583ebe89`)	2022-10-02 11:23:51 +10:00
..
libalpm	Avoid information leakage with badly formed download header	2022-10-02 11:23:51 +10:00

Allan McRae 3bad984871 Avoid information leakage with badly formed download header

Parsing of Content-Disposition relies on well formed headers.
A malformed header such as:

Content-Disposition="";

will result in a strnduppayload->content_disp_name, -1, ptr),
which will copy memory until it hits a \0.

Prevent this by only copying the value if it exists.

Fixes FS#73704.

Signed-off-by: Allan McRae <allan@archlinux.org>
(cherry picked from commit 40583ebe89)

2022-10-02 11:23:51 +10:00

libalpm Avoid information leakage with badly formed download header 2022-10-02 11:23:51 +10:00