GitLab/ocserv
1
0
Fork 0
mirror of https://gitlab.com/openconnect/ocserv.git synced 2026-02-10 00:37:00 +08:00
Code Issues Packages Projects Releases Wiki Activity

Fix array subscription in unescape_url

Browse Source 
Passwords with url escaped characters were parsed incorrectly. The
variable used for iterating over `url` should be `i`, not `pos`. This
patch fixes the problem.

Signed-off-by: Nikos Mavrogiannopoulos <nmav@redhat.com>
This commit is contained in:
Hexchain Tong
2014-06-12 12:55:03 +08:00
committed by Nikos Mavrogiannopoulos
parent 11bc2819da
commit 41ff067641
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
src/html.c
View File

@@ -86,8 +86,8 @@ char *unescape_url(void *pool, const char *url, unsigned len, unsigned *out_len)
char b[3];
unsigned int u;
b[0] = url[pos + 1];
b[1] = url[pos + 2];
b[0] = url[i + 1];
b[1] = url[i + 2];
b[2] = 0;
if (sscanf(b, "%02x", &u) <= 0) {