github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-08-14 05:45:59 +03:00
Code Issues Packages Projects Releases Wiki Activity

Updates libInjection

Browse Source 
* Updates libInjection repository to libinjection.github.io
 * Update libInjection to version 3.9.2, plus:
   - Pass the correct pointer to memmem()
     In parse_money(), if there is a "$foobar$", it calls memmem() to
     find it again. Wrong pointer can cause itself to backtrack in a
     dead loop and hang the entire process.
   - Addresses some issues reported by cppcheck, including an overflow
     on parse_slash.
This commit is contained in:
Felipe Zimmerle 2021-01-25 14:16:22 -03:00
parent 102f4bdd91
commit 53d36ab63a
No known key found for this signature in database
GPG Key ID: E6DFB08CE8B11277
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.gitmodules vendored
View File

@ -3,7 +3,7 @@
url = https://github.com/SpiderLabs/secrules-language-tests url = https://github.com/SpiderLabs/secrules-language-tests
[submodule "others/libinjection"] [submodule "others/libinjection"]
path = others/libinjection path = others/libinjection
url = https://github.com/client9/libinjection.git url = https://github.com/libinjection/libinjection.git
[submodule "bindings/python"] [submodule "bindings/python"]
path = bindings/python path = bindings/python
url = https://github.com/SpiderLabs/ModSecurity-Python-bindings.git url = https://github.com/SpiderLabs/ModSecurity-Python-bindings.git

2
others/libinjection

@ -1 +1 @@
Subproject commit bf234eb2f385b969c4f803b35fda53cffdd93922 Subproject commit bfba51f5af8f1f6cf5d6c4bf862f1e2474e018e3