upstream/haproxy
1
0
Fork 0
mirror of https://github.com/haproxy/haproxy.git synced 2026-03-09 01:20:40 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 7
haproxy/src
History
Thierry FOURNIER fd1399091e BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end 
Applying inet_pton() to input contents is not reliable because the
function requires a zero-terminated string. While inet_pton() will
stop when contents do not match an IPv6 address anymore, it could
theorically read past the end of a buffer if the data to be converted
was at the end of a buffer (this cannot happen right now thanks to
the reserve at the end of the buffer). At least the conversion does
not work.

Fix this by using buf2ip6() instead, which copies the string into a
padded aread.

This bug came with recent commit b805f71 (MEDIUM: sample: let the
cast functions set their output type), no backport is needed.
2013-12-11 22:03:00 +01:00
..
acl.c BUG/MINOR: acl: fix sample expression error reporting 2013-12-06 16:02:46 +01:00
appsession.c MEDIUM: make the trash be a chunk instead of a char * 2012-10-29 16:57:30 +01:00
arg.c BUG/MEDIUM: args: fix double free on error path in argument expression parser 2013-12-06 15:30:05 +01:00
auth.c MINOR: acl/pattern: use types different from int to clarify who does what. 2013-12-02 23:31:33 +01:00
backend.c MEDIUM: connection: move the send_proxy offset to the connection 2013-12-09 15:40:23 +01:00
base64.c [MINOR] add encode/decode function for 30-bit integers from/to base64 2010-10-30 19:04:33 +02:00
buffer.c MINOR: buffer: align the last output line if there are less than 8 characters left 2013-11-21 08:07:04 +01:00
cfgparse.c BUG/MINOR: check_config_validity: check the returned value of stktable_init() 2013-12-11 14:47:05 +01:00
channel.c BUG/MEDIUM: channel: bo_getline() must wait for \n until buffer is full 2013-12-10 18:58:23 +01:00
checks.c BUG/MEDIUM: checks: agent doesn't get the response if server does not closes 2013-12-11 21:43:09 +01:00
chunk.c MINOR: chunks: centralize the trash chunk allocation 2012-12-23 21:46:07 +01:00
compression.c MEDIUM: sample: systematically pass the keyword pointer to the keyword 2013-08-01 21:17:13 +02:00
connection.c MEDIUM: connection: merge the send_proxy and local_send_proxy calls 2013-12-09 15:40:23 +01:00
cttproxy.c CLEANUP: cttproxy: remove a warning on undeclared close() 2012-10-05 22:18:07 +02:00
dumpstats.c MINOR: stats: provide some appctx information in "show sess all" 2013-12-09 15:40:23 +01:00
ev_epoll.c OPTIM/MEDIUM: epoll: fuse active events into polled ones during polling changes 2013-11-15 23:15:10 +01:00
ev_kqueue.c BUG/MINOR: poll: the I/O handler was called twice for polled I/Os 2012-12-14 00:17:03 +01:00
ev_poll.c MEDIUM: poll: do not use FD_* macros anymore 2013-03-31 15:01:01 +02:00
ev_select.c BUG/MAJOR: ev_select: disable the select() poller if maxsock > FD_SETSIZE 2013-03-31 15:01:05 +02:00
fd.c BUG: polling: don't skip polled events in the spec list 2012-11-12 01:57:14 +01:00
freq_ctr.c BUG/MINOR: time: frequency counters are not totally accurate 2012-12-29 21:50:07 +01:00
frontend.c MAJOR: stream-int: stop using si->conn and use si->end instead 2013-12-09 15:40:22 +01:00
haproxy-systemd-wrapper.c BUILD/MINOR: systemd: fix compiler warning about unused result 2013-12-10 08:50:55 +01:00
haproxy.c MEDIUM: http: The redirect strings follows the log format rules. 2013-12-02 23:31:33 +01:00
hash.c MEDIUM: backend: add support for the wt6 hash 2013-11-14 16:37:50 +01:00
hdr_idx.c OPTIM/MINOR: move the hdr_idx pools out of the proxy struct 2011-10-24 18:15:04 +02:00
i386-linux-vsys.c MEDIUM: listener: add support for linux's accept4() syscall 2012-10-08 20:11:03 +02:00
lb_chash.c BUG/MAJOR: server: weight calculation fails for map-based algorithms 2013-11-21 15:09:02 +01:00
lb_fas.c BUG/MAJOR: server: weight calculation fails for map-based algorithms 2013-11-21 15:09:02 +01:00
lb_fwlc.c BUG/MAJOR: server: weight calculation fails for map-based algorithms 2013-11-21 15:09:02 +01:00
lb_fwrr.c BUG/MAJOR: server: weight calculation fails for map-based algorithms 2013-11-21 15:09:02 +01:00
lb_map.c BUG/MAJOR: server: weight calculation fails for map-based algorithms 2013-11-21 15:09:02 +01:00
listener.c MEDIUM: sample: systematically pass the keyword pointer to the keyword 2013-08-01 21:17:13 +02:00
log.c MAJOR: stream-int: stop using si->conn and use si->end instead 2013-12-09 15:40:22 +01:00
map.c BUG/MEDIUM: map: Bad map file parser 2013-12-11 22:02:04 +01:00
memory.c MEDIUM: memory: add the ability to poison memory at run time 2012-05-08 21:28:16 +02:00
pattern.c BUG/MEDIUM: pattern: Pattern node has type of "struct pat_idx_elt" in place of "struct eb_node" 2013-12-09 15:39:01 +01:00
payload.c MEDIUM: pattern: rename "acl" prefix to "pat" 2013-12-02 23:31:33 +01:00
peers.c MEDIUM: peers: delay appctx initialization 2013-12-09 15:40:23 +01:00
pipe.c BUILD/MINOR: silent a build warning in src/pipe.c (fcntl) 2011-10-24 17:09:22 +02:00
proto_http.c MINOR: stream_interface: add reporting of ressouce allocation errors 2013-12-09 17:12:18 +01:00
proto_tcp.c MEDIUM: connection: merge the send_proxy and local_send_proxy calls 2013-12-09 15:40:23 +01:00
proto_uxst.c MAJOR: listener: support inheriting a listening fd from the parent 2013-03-11 01:30:01 +01:00
protocol.c REORG: split "protocols" files into protocol and listener 2012-09-15 22:29:32 +02:00
proxy.c MEDIUM: checks: add send/expect tcp based check 2013-12-06 11:50:47 +01:00
queue.c MAJOR: connection: replace struct target with a pointer to an enum 2012-11-12 00:42:33 +01:00
raw_sock.c MAJOR: connection: add two new flags to indicate readiness of control/transport 2013-12-09 15:40:23 +01:00
rbtree.c [MINOR] imported the rbtree function from Linux kernel 2007-01-07 02:12:57 +01:00
regex.c CLEANUP: regex: Create regex_comp function that compiles regex using compilation options 2013-10-14 14:42:50 +02:00
sample.c BUG/MEDIUM: sample: conversion from str to ipv6 may read data past end 2013-12-11 22:03:00 +01:00
server.c MEDIUM: Set rise and fall of agent checks to 1 2013-11-25 07:31:16 +01:00
session.c MINOR: session: report lack of resources using the new stream-interface's error code 2013-12-09 17:14:23 +01:00
sessionhash.c [PATCH] appsessions: cleanup DEBUG_HASH and initialize request_counter 2008-08-13 23:43:26 +02:00
shctx.c BUG/MEDIUM: shctx: makes the code independent on SSL runtime version. 2013-04-26 19:15:52 +02:00
signal.c BUG/MEDIUM: signal: signal handler does not properly check for signal bounds 2013-01-24 16:19:19 +01:00
ssl_sock.c MAJOR: connection: add two new flags to indicate readiness of control/transport 2013-12-09 15:40:23 +01:00
standard.c CLEANUP/MINOR: standard: use the system define INET6_ADDRSTRLEN in place of MAX_IP6_LEN 2013-12-11 22:03:00 +01:00
stick_table.c BUG/MEDIUM: acl: fix regression introduced by latest converters support 2013-12-05 02:23:13 +01:00
stream_interface.c MAJOR: stream-interface: dynamically allocate the applet context 2013-12-09 15:40:23 +01:00
task.c [OPTIM] task: don't scan the run queue if we know it's empty 2011-09-10 20:08:49 +02:00
time.c BUG/MINOR: time: frequency counters are not totally accurate 2012-12-29 21:50:07 +01:00
trace.c MINOR: add a new function call tracer for debugging purposes 2012-05-26 00:12:37 +02:00
uri_auth.c BUG/MEDIUM: uri_auth: missing NULL check and memory leak on memory shortage 2013-01-24 16:19:19 +01:00