diff options
author | John MacFarlane <jgm@berkeley.edu> | 2017-06-21 11:50:06 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2017-06-21 11:50:06 +0200 |
commit | 60aa732dcfc2578a96530bdd73262112fb6bbdf2 (patch) | |
tree | 0e26773e1b1e0551a1a174cadba2b0ff1e63e4d5 /test/afl_dictionary/attr_href | |
parent | f3026b816d7a33e62824bd559692422206196c6d (diff) | |
parent | cc24db41b5d9f18644839dc27c565e7006a7323f (diff) |
Merge pull request #205 from github/dont-scan-past-eol
Don't scan past an EOL.
The existing negated character classes ([^…]) are careful to always include \x00 in the characters excluded, but these . catch-alls can scan right past the terminating NUL placed at the end of the buffer by _scan_at.
As such, buffer overruns can occur.
Also, don't scan past a newline in HTML block end scanners.
Diffstat (limited to 'test/afl_dictionary/attr_href')
0 files changed, 0 insertions, 0 deletions