[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[GNUnet-SVN] [gnurl] 68/73: imap: if a FETCH response has no size, don't
From: |
gnunet |
Subject: |
[GNUnet-SVN] [gnurl] 68/73: imap: if a FETCH response has no size, don't call write callback |
Date: |
Tue, 24 Oct 2017 18:54:49 +0200 |
This is an automated email from the git hooks/post-receive script.
ng0 pushed a commit to branch master
in repository gnurl.
commit 13c9a9ded3ae744a1e11cbc14e9146d9fa427040
Author: Daniel Stenberg <address@hidden>
AuthorDate: Sat Oct 7 00:11:31 2017 +0200
imap: if a FETCH response has no size, don't call write callback
CVE-2017-1000257
Reported-by: Brian Carpenter and 0xd34db347
Also detected by OSS-Fuzz:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=3586
---
lib/imap.c | 5 +++++
1 file changed, 5 insertions(+)
diff --git a/lib/imap.c b/lib/imap.c
index 954d18f37..baa31a2f8 100644
--- a/lib/imap.c
+++ b/lib/imap.c
@@ -1126,6 +1126,11 @@ static CURLcode imap_state_fetch_resp(struct connectdata
*conn, int imapcode,
/* The conversion from curl_off_t to size_t is always fine here */
chunk = (size_t)size;
+ if(!chunk) {
+ /* no size, we're done with the data */
+ state(conn, IMAP_STOP);
+ return CURLE_OK;
+ }
result = Curl_client_write(conn, CLIENTWRITE_BODY, pp->cache, chunk);
if(result)
return result;
--
To stop receiving notification emails like this one, please contact
address@hidden
- [GNUnet-SVN] [gnurl] 15/73: pingpong: return error when trying to send without connection, (continued)
- [GNUnet-SVN] [gnurl] 15/73: pingpong: return error when trying to send without connection, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 45/73: cli tool: reimplement stdin buffering in -F option., gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 67/73: ftp: reject illegal IP/port in PASV 227 response, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 54/73: ldap: silence clang warning, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 51/73: configure: remove the C++ compiler check, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 47/73: mime: keep "text/plain" content type if user-specified., gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 56/73: setopt: avoid integer overflows when setting millsecond values, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 52/73: memdebug: trace send, recv and socket, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 64/73: test308: disable if MultiSSL feature enabled, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 71/73: THANKS: update at 7.56.1 release time, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 68/73: imap: if a FETCH response has no size, don't call write callback,
gnunet <=
- [GNUnet-SVN] [gnurl] 61/73: os400: add missing symbols in config file., gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 17/73: remove_handle: call multi_done() first, then clear dns cache pointer, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 38/73: ftpserver: support case insensitive commands, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 16/73: multi_done: wait for name resolve to finish if still ongoing, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 06/73: docs: fix typo in curl_mime_data_cb man page, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 11/73: strtoofft: Remove extraneous null check, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 19/73: docs: clarify form/mime usage of non-regular data files., gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 66/73: test653: check reuse of easy handle after mime data change, gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 62/73: vtls: change struct Curl_ssl `close' field name to `close_one'., gnunet, 2017/10/24
- [GNUnet-SVN] [gnurl] 57/73: setopt: range check most long options, gnunet, 2017/10/24