mirror of https://github.com/openresty/openresty
bugfix: applied nginx's official security fix for an issue in the range filter (CVE-2017-7529).
parent
391709ce4d
commit
58f39e963f
@ -0,0 +1,14 @@
|
|||||||
|
diffsrc/http/modules/ngx_http_range_filter_module.c b/src/http/modules/ngx_http_range_filter_module.c
|
||||||
|
--- src/http/modules/ngx_http_range_filter_module.c
|
||||||
|
+++ src/http/modules/ngx_http_range_filter_module.c
|
||||||
|
@@ -377,6 +377,10 @@ ngx_http_range_parse(ngx_http_request_t
|
||||||
|
range->start = start;
|
||||||
|
range->end = end;
|
||||||
|
|
||||||
|
+ if (size > NGX_MAX_OFF_T_VALUE - (end - start)) {
|
||||||
|
+ return NGX_HTTP_RANGE_NOT_SATISFIABLE;
|
||||||
|
+ }
|
||||||
|
+
|
||||||
|
size += end - start;
|
||||||
|
|
||||||
|
if (ranges-- == 0) {
|
Loading…
Reference in New Issue