Buffer overrun in httpclient.c - _CreateHttpHeader #437

dantraMSFT · 2017-11-11T02:07:53Z

The logic that calculates the buffer size does not take into account the trailing \r\n. In cases where 10 digit value consumes 9 or 10 characters, the buffer is overrun.

The fix is to add an extra call to SizeTAdd; something like the following

SizeTAdd(pageSize, 2, &pageSize) != S_OK

This is blocking the release of the PSRP package and repros consistently in PowerShell 6 when creating a new session to office 365.

See issue PowerShell/PowerShell#5130

Issues fixed:

Issues fixed: Issue #437: Buffer overrun in httpclient.c - _CreateHttpHeader Issue #438: Cannot enable libmi logging on psrp client using tag v1.4.0-6 Issue #439: httpclient.c:_RequestCallbackWrite does not handle partial sends.

Issues fixed: Issue #437: Buffer overrun in httpclient.c - _CreateHttpHeader Issue #438: Cannot enable libmi logging on psrp client using v1.4.0-6 Issue #439: httpclient.c:_RequestCallbackWrite not handling partial sends.

dantraMSFT mentioned this issue Nov 13, 2017

Work arounds for issues 438, 437, and 439 - Do not merge. #440

Closed

yakman2020 pushed a commit that referenced this issue Nov 13, 2017

Resolve problems with psrp issues #437,#438,#439

f6c1951

yakman2020 pushed a commit that referenced this issue Nov 13, 2017

Resolve problems with psrp issues #437,#438,#439

271f3cb

Issues fixed:

dantraMSFT mentioned this issue Nov 14, 2017

Update PSRP version to 1.4.1 to match OMI PSRP fixes. PowerShell/psl-omi-provider#110

Merged

paulcallen closed this as completed Nov 15, 2017

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Buffer overrun in httpclient.c - _CreateHttpHeader #437

Buffer overrun in httpclient.c - _CreateHttpHeader #437

dantraMSFT commented Nov 11, 2017

Buffer overrun in httpclient.c - _CreateHttpHeader #437

Buffer overrun in httpclient.c - _CreateHttpHeader #437

Comments

dantraMSFT commented Nov 11, 2017