amyroh 2003/02/14 14:04:47
Modified: catalina/src/share/org/apache/catalina/util RequestUtil.java
Log:
Allow query string values to contain '=' characters. Fixes bugtraq 4697925.
Revision Changes Path
1.2 +11 -8
jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/util/RequestUtil.java
Index: RequestUtil.java
===================================================================
RCS file:
/home/cvs/jakarta-tomcat-catalina/catalina/src/share/org/apache/catalina/util/RequestUtil.java,v
retrieving revision 1.1
retrieving revision 1.2
diff -u -r1.1 -r1.2
--- RequestUtil.java 18 Jul 2002 16:47:46 -0000 1.1
+++ RequestUtil.java 14 Feb 2003 22:04:47 -0000 1.2
@@ -506,9 +506,13 @@
ox = 0;
break;
case '=':
- key = new String(data, 0, ox, encoding);
- ox = 0;
- break;
+ if (key == null) {
+ key = new String(data, 0, ox, encoding);
+ ox = 0;
+ } else {
+ data[ox++] = c;
+ }
+ break;
case '+':
data[ox++] = (byte)' ';
break;
@@ -532,4 +536,3 @@
}
-
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
