diff options
Diffstat (limited to 'main/nginx/CVE-2017-7529.patch')
| -rw-r--r-- | main/nginx/CVE-2017-7529.patch | 15 |
1 files changed, 15 insertions, 0 deletions
diff --git a/main/nginx/CVE-2017-7529.patch b/main/nginx/CVE-2017-7529.patch new file mode 100644 index 0000000000..cca8a45234 --- /dev/null +++ b/main/nginx/CVE-2017-7529.patch @@ -0,0 +1,15 @@ +Patch-Source: http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html + +--- a/src/http/modules/ngx_http_range_filter_module.c ++++ b/src/http/modules/ngx_http_range_filter_module.c +@@ -377,6 +377,10 @@ ngx_http_range_parse(ngx_http_request_t + range->start = start; + range->end = end; + ++ if (size > NGX_MAX_OFF_T_VALUE - (end - start)) { ++ return NGX_HTTP_RANGE_NOT_SATISFIABLE; ++ } ++ + size += end - start; + + if (ranges-- == 0) { |