mirror of
https://github.com/owasp-modsecurity/ModSecurity.git
synced 2025-11-15 17:12:14 +03:00
Updates libInjection
* Updates libInjection repository to libinjection.github.io
* Update libInjection to version 3.9.2, plus:
- Pass the correct pointer to memmem()
In parse_money(), if there is a "$foobar$", it calls memmem() to
find it again. Wrong pointer can cause itself to backtrack in a
dead loop and hang the entire process.
- Addresses some issues reported by cppcheck, including an overflow
on parse_slash.
This commit is contained in:
Felipe Zimmerle
2
.gitmodules
vendored
2
.gitmodules
vendored
@@ -3,7 +3,7 @@
|
||||
url = https://github.com/SpiderLabs/secrules-language-tests
|
||||
[submodule "others/libinjection"]
|
||||
path = others/libinjection
|
||||
url = https://github.com/client9/libinjection.git
|
||||
url = https://github.com/libinjection/libinjection.git
|
||||
[submodule "bindings/python"]
|
||||
path = bindings/python
|
||||
url = https://github.com/SpiderLabs/ModSecurity-Python-bindings.git
|
||||
|
||||
Reference in New Issue
Block a user