github_mirrors/ModSecurity
3
0
Fork 1
mirror of https://github.com/owasp-modsecurity/ModSecurity.git synced 2025-09-30 19:47:47 +03:00
Code Issues Packages Projects Releases Wiki Activity

Fix `capture' memory management

Browse Source 
The capture action was implemented before the transaction concept.
While partially ported to use the transaction, some of the elements
were not freed correctly. Now it is fully ported to use the class
Transaction.
This commit is contained in:
Felipe Zimmerle
2016-02-16 23:20:23 -03:00
parent e346454374
commit ed8b0c85d7
11 changed files with 17 additions and 37 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/operators/detect_sqli.cc
View File

@@ -32,8 +32,8 @@ bool DetectSQLi::evaluate(Transaction *transaction, const std::string &input) {
issqli = libinjection_sqli(input.c_str(), input.length(), fingerprint);
if (issqli) {
matched.push_back(fingerprint);
if (transaction) {
transaction->m_matched.push_back(fingerprint);
#ifndef NO_LOGS
transaction->debug(4, "detected SQLi using libinjection with " \
"fingerprint '" + std::string(fingerprint) + "' at: '" +