Fijxu
/
nginx-quic
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
nginx-quic/src
History
Maxim Dounin c88dcb8feb Mp4: fixed possible pointer overflow on 32-bit platforms. 
On 32-bit platforms mp4->buffer_pos might overflow when a large
enough (close to 4 gigabytes) atom is being skipped, resulting in
incorrect memory addesses being read further in the code.  In most
cases this results in harmless errors being logged, though may also
result in a segmentation fault if hitting unmapped pages.

To address this, ngx_mp4_atom_next() now only increments mp4->buffer_pos
up to mp4->buffer_end.  This ensures that overflow cannot happen.
 		2018-11-21 20:23:16 +03:00
..
core Version bump. 2018-12-03 20:07:36 +03:00
event SSL: explicitly set maximum version (ticket #1654). 2018-10-23 22:11:48 +03:00
http Mp4: fixed possible pointer overflow on 32-bit platforms. 2018-11-21 20:23:16 +03:00
mail SSL: using default server context in session remove (closes #1464). 2018-01-30 17:46:31 +03:00
misc Style: aligned ngx_null_command. 2017-07-12 11:34:04 +03:00
os Removed glibc crypt_r() bug workaround (ticket #1469). 2018-05-23 16:38:16 +03:00
stream Silenced -Wcast-function-type warnings (closes #1546). 2018-05-07 09:54:37 +00:00