mirror of
https://github.com/oxen-io/lokinet.git
synced 2024-11-19 09:25:28 +00:00
bounds check in http headers
This commit is contained in:
parent
54b9934b8f
commit
e8fd66ba8a
@ -13,7 +13,7 @@ namespace abyss
|
||||
return true;
|
||||
}
|
||||
auto idx = line.find_first_of(':');
|
||||
if(idx == string_view::npos)
|
||||
if(idx == string_view::npos || (line.size() - 1) <= (1 + idx))
|
||||
return false;
|
||||
string_view header = line.substr(0, idx);
|
||||
string_view val = line.substr(1 + idx);
|
||||
|
Loading…
Reference in New Issue
Block a user