]> git.kaiwu.me - nginx.git/commit
projects / nginx.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 8d00372) | patch
HTTP/3: fixed potential type overflow in string literal parser.
authorSergey Kandaurov <pluknet@nginx.com>
Thu, 5 Sep 2024 15:35:43 +0000 (19:35 +0400)
committerSergey Kandaurov <s.kandaurov@f5.com>
Tue, 23 Dec 2025 18:40:33 +0000 (22:40 +0400)
commita5cfa096d26933b1789d86df8af9c12574c23cc5
treeb34d79cdd6d5fda6598b8858d86865e8e9df6fa3tree | snapshot
parent8d00372555bc09fd394ffa767e75c9b15b68c27bcommit | diff
HTTP/3: fixed potential type overflow in string literal parser.

This might happen for Huffman encoded string literals as the result
of length expansion.  Notably, the maximum length of string literals
is already limited with the "large_client_header_buffers" directive,
so this was only possible with nonsensically large configured limits.
src/http/v3/ngx_http_v3_parse.c diff | blob | history
nginx upstream