Changeset 45a71c9d in rtems


Ignore:
Timestamp:
02/08/06 16:15:09 (17 years ago)
Author:
Joel Sherrill <joel.sherrill@…>
Children:
c9c835c
Parents:
23e7d308
Message:

2006-02-08 Thomas Rauscher <trauscher@…>

PR 890/networking

  • rtems_webserver/webs.c: The webservers enters an infinite loop when a POST request with less data than indicated in the Content-Length header is received. It also consumes additional heap memory and a file descriptor for each invalid POST.
Location:
c/src/libnetworking
Files:
2 edited

Legend:

Unmodified
Added
Removed

  • c/src/libnetworking/ChangeLog

    r23e7d308 r45a71c9d  
     12006-02-08      Thomas Rauscher  <trauscher@loytec.com>
     2
     3        PR 890/networking
     4        * rtems_webserver/webs.c: The webservers enters an infinite loop when a
     5        POST request with less data than indicated in the Content-Length
     6        header is received. It also consumes additional heap memory and a
     7        file descriptor for each invalid POST.
     8
    192005-05-20      Sergei Organov  <osv@topconrd.ru>
    210

  • c/src/libnetworking/rtems_webserver/webs.c

    r23e7d308 r45a71c9d  
    566566
    567567                }  else if (nbytes == 0) {                              /* EOF or No data available */
     568                        /* Bugfix for POST DoS attack with invalid content length */
     569                        if (socketEof(wp->sid)) {
     570                                websDone(wp, 0);
     571                        }
     572                        /* End of bugfix */
    568573                        return -1;
    569574
Note: See TracChangeset for help on using the changeset viewer.