You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The function cgi_unescape_special_chars() allocates some memory based on the length of the input string and returns the pointer to this new allocated memory as output. The function is used twice in LibCGI and in neither case the memory is freed again although not used further.
First is in cgi_get_cookies() where the pointer taking the return argument is overwritten multiple times before the memory can be freed.
Second is in process_data() where the result is directly fed in another function giving you no chance to free it again.
In environments with small memory this leads to problems processing large form data with lots of key/value pairs.
The text was updated successfully, but these errors were encountered:
The function
cgi_unescape_special_chars()
allocates some memory based on the length of the input string and returns the pointer to this new allocated memory as output. The function is used twice in LibCGI and in neither case the memory is freed again although not used further.First is in
cgi_get_cookies()
where the pointer taking the return argument is overwritten multiple times before the memory can be freed.Second is in
process_data()
where the result is directly fed in another function giving you no chance to free it again.In environments with small memory this leads to problems processing large form data with lots of key/value pairs.
The text was updated successfully, but these errors were encountered: