cURL / Mailing Lists / curl-library / Single Mail

curl-library

[PATCH] fix cookie max-age field integer overflow bug in libcurl

From: chen prog <prog.chen_at_gmail.com>
Date: Tue, 14 Jan 2014 19:50:49 +0800

when http server return as
Set-Cookie: ID=D31939F01C9A5F71918AB1573B9CE3FA:FG=1; expires=Thu,
31-Dec-37 23:55:55 GMT; max-age=2147483647; path=/; domain=.abc.com

must make sure max-age after expires and max-age=0x7FFFFFFF

in libcurl cookie_add will make a overflow max-age, result in cookie invalid

want to known more detail , see patch in attachment

-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html

application/octet-stream attachment: 0001-fix-cookie-max-age-field-integer-overflow-bug-in-lib.patch

Received on 2014-01-14

This message: [ Message body ]
Next message: Putinei .Ionut: "libcurl and openssl1.0.1e"
Previous message: C�dric Deltheil: "Re: HTTP POST: fail early if unknown data size (read function)"
Next in thread: Daniel Stenberg: "Re: [PATCH] fix cookie max-age field integer overflow bug in libcurl"
Reply: Daniel Stenberg: "Re: [PATCH] fix cookie max-age field integer overflow bug in libcurl"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]