Module Name: src Committed By: snj Date: Sat May 16 18:02:14 UTC 2015
Modified Files: src/common/lib/libprop [netbsd-7]: prop_kern.c prop_object.c prop_object_impl.h Log Message: Pull up following revision(s) (requested by christos in ticket #782): common/lib/libprop/prop_kern.c: revision 1.19 common/lib/libprop/prop_object.c: revision 1.30 common/lib/libprop/prop_object_impl.h: revision 1.32 Limit size of xml buffer for userland requests (From Mateusz Kocielski) -- Don't treat NUL (EOF) as SPACE. All the code that uses _PROP_ISSPACE() checks explicitly for _PROP_EOF() anyway, and this can be abused to cause run beyond the end of buffer DoS (Mateusz Kocielski) -- Now that _PROP_ISSPACE does not include the EOF check, put the check for EOF inside the loop. Also fix another unbounded loop that did not check for EOF. From Mateusz Kocielski To generate a diff of this commit: cvs rdiff -u -r1.17.22.1 -r1.17.22.2 src/common/lib/libprop/prop_kern.c cvs rdiff -u -r1.29 -r1.29.4.1 src/common/lib/libprop/prop_object.c cvs rdiff -u -r1.31 -r1.31.12.1 src/common/lib/libprop/prop_object_impl.h Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.