-
- Downloads
lws_snprintf
Thanks to Fabrice Gilot for reporting the problem that led to uncovering this. Due to a misunderstanding of the return value of snprintf (it is not truncated according to the max size passed in) in several places relying on snprintf to truncate the length overflows are possible. This patch wraps snprintf with a new lws_snprintf() which does truncate its length to allow the buffer limiting scheme to work properly. All users should update with these fixes.
Showing
- lib/client-handshake.c 13 additions, 13 deletionslib/client-handshake.c
- lib/libuv.c 3 additions, 3 deletionslib/libuv.c
- lib/libwebsockets.c 53 additions, 35 deletionslib/libwebsockets.c
- lib/libwebsockets.h 15 additions, 1 deletionlib/libwebsockets.h
- lib/lws-plat-unix.c 3 additions, 3 deletionslib/lws-plat-unix.c
- lib/private-libwebsockets.h 1 addition, 1 deletionlib/private-libwebsockets.h
- lib/server.c 6 additions, 6 deletionslib/server.c
- libwebsockets-api-doc.html 24 additions, 0 deletionslibwebsockets-api-doc.html
- lwsws/conf.c 6 additions, 6 deletionslwsws/conf.c
- plugins/protocol_lws_status.c 2 additions, 2 deletionsplugins/protocol_lws_status.c
- test-server/test-fraggle.c 1 addition, 1 deletiontest-server/test-fraggle.c
- test-server/test-ping.c 1 addition, 1 deletiontest-server/test-ping.c
- test-server/test-server-status.c 2 additions, 2 deletionstest-server/test-server-status.c
Loading
Please register or sign in to comment